home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Hacker Chronicles 1
/
HACKER1.ISO
/
network
/
nia69
< prev
next >
Wrap
Text File
|
1992-09-26
|
351KB
|
7,053 lines
Founded By: | _ _______
Guardian Of Time | __ N.I.A. _ ___ ___ Are you on any WAN? are
Judge Dredd | ____ ___ ___ ___ ___ you on Bitnet, Internet
------------------+ _____ ___ ___ ___ ___ Compuserve, MCI Mail,
\ / ___ ___ ___ ___ ___________ Sprintmail, Applelink,
+---------+ ___ ___ ___ ___ ___________ Easynet, MilNet,
| 15TUE91 | ___ ______ ___ ___ ___ FidoNet, et al.?
| File 69 | ___ _____ ___ ___ ___ If so please drop us a
+---------+ ____ _ __ ___ line at
"smells like fish ___ _ ___ elisem@nuchat.sccsi.com
tastes like chicken" __
_ Network Information Access
Other World BBS Ignorance, There's No Excuse.
NIA Issue 69 Volume 2
Welcome to NIA069. Due to the vast amount of information we recieved
you can expect to see NIA070 very soon after this release date.
==============================================================================
Table_Of_Contents
1. The Future of the Internet................................Jane M. Fraser
2. Tekno DCS HELP [02]..........................................Judge Dredd
3 Computer Security Techniques [04].......................Guardian Of Time
4. Kermit Manual [01].......................................Malefactor [OC]
5. Department Of The Army Field Manual [02]....................Death Jester
6. World News Sept 1990-Jan 1991...................Face 2 Face Publications
7. Comments From Editors...........................................JD & GOT
==============================================================================
/ /
/ File 01 / NIA069 /
/ The Future of the Internet /
/ Jane M. Fraser /
/ /
The Internet is network of computer networks used primarily by
educational and research establishments. The parts of the Internet
that have been funded by federal resources (for example, NSFNET) may
be used only for activities that support education and research.
Other parts have not been so funded, and usage is not restricted.
Various proposals have been made to extend the Internet to more
institutions, to allow commercial use on all parts of the Internet,
and to increase the bandwidth of the federally supported part of the
network.
On November 29 through December 1, I was one of approximately 150
attendees at a conference addressing various issues about the future
of the Internet. I have always felt very confused about what is the
Internet, what are the restrictions on usage, what different parts of
the network are doing, and what options are open for the future. I
learned one fact for certain at this conference: almost everyone else
is confused also.
I will report on some of the specifics of what happened at the
conference, putting emphasis on aspects I think will be of most
interest to the readers of the Calendar, but I am also confident that,
no matter how careful I am, this report will contain errors.
The conference, Information Infrastructure for the 1990s, was
sponsored by two programs at the John F. Kennedy School of Government
at Harvard University: Science, Technology and Public Policy and
Strategic Computing and Telecommunications in the Public Sector. The
two primary organizers were Lewis Branscomb and Jerry Mechling. The
two-and-a-half days were heavily packed with presentations of
commissioned papers, comments by panels of discussants, and open
discussion from the floor.
The main points the conference reinforced for me are, first, the
growing importance of computer networks for fast communication and,
second, the growing importance, for many users, of interconnectivity
of networks. The first needs little comment. The second may be of
importance more to some sectors, especially academics, than to others.
Academics and researchers often want to communicate with a wide range
of people and, thus, want to be able to send electronic mail to people
on many different networks. Some companies may want their employees to
communicate only within the company, not with those outside it, but
others find interorganizational communication to be very important.
Some networks already interconnect (although not completely), for
example, AT&T Mail, CompuServe, and the Internet. Others are
isolated, for example, Prodigy. Many barriers, institutional and
technical, make it difficult to interconnect networks, but, I believe,
there will be increasing demand from users to do so.
At the federal level, a proposal has been put forth for federal
funding of NREN, the National Research and Education Network, which
would, roughly, be an extremely high bandwidth version of the
Internet. (The latter sentence is undoubtedly not error free.) Most
uses of supercomputers, almost by definition, require and generate
huge amounts of data. For example, at the conference, we viewed a
short tape of a simulation of the formation of a thundercloud. Remote
access to supercomputers has always been cited as a justification for
investing federal money in the Internet, and this again is one of the
major reasons cited for the need for NREN. Indeed, the ability to
create and manage a network at the data speeds being contemplated is
itself viewed as a research issue.
However, other participants argued that "low-end" use, that is, use
not requiring high bandwidth, is also an appropriate topic for
research. As the network expands and usage grows (which is happening
at an amazing rate), questions arise about the ability of existing
mechanisms to handle traffic. These participants argued that the
networking of the large numbers of computers on the Internet (and its
affiliates) is also worthy of attention, even without the addition of
more bandwidth. This discussion of the importance of low-end use was
naturally related to issues of allowing more general access to the
Internet, for example, for K through 12 educational institutions.
Currently, most academic users of the Internet receive access through
their institution's connection. While the institution itself bears
considerable cost, most academic end users do not receive a bill for
usage. Internet connectivity to researchers is viewed by many
academic institutions as being analogous to the library (for which
usage fees are generally not charged to the end user or to the end
user's academic unit), rather than analogous to the phone (for which
such usage fees are charged). The user (or the academic unit) usually
must provide a terminal or personal computer. Here at OSU, the
computer magnus provides Internet access for anyone who requests it.
(Actually, this is not quite accurate; magnus accounts will shortly be
available to all OSU users.) One paper, "Pricing the NREN: The
Efficient Subsidy," by Gerald Faulhaber, presented an economist's
arguments against current pricing and subsidization schemes.
Several commercial enterprises have been created (for example, PSI) to
provide Internet access for commercial enterprises. Recall that
commercial use is allowed as long as the use is in support of research
and education. For example, a researcher at a commercial enterprise
can communicate with researchers at academic institutions on research
topics. A company can also communicate with researchers about its
products. Two commercial users on different commercial networks must
be very careful, however, since their communication with each other
might traverse parts of the network on which commercial traffic is
forbidden. However, it is often difficult for the user to predict what
route a message will take. If all this seems arcane and unclear, it
is. Many people (including Alison Brown of the Ohio Supercomputer
Center) are working to make these aspects less arcane and more clear.
One paper, "The Strategic Future of the Mid-Level Networks," by
Paulette Mandelbaum and Richard Mandelbaum, explored various possible
models for relationships between commercial and educational
enterprises on the Internet.
A portion of the conference had an Ohio focus. Jerry Mechling visited
Ohio this summer and interviewed many people in order to write a case
paper, which was presented and discussed at the conference, An
Information Infrastructure Strategy for Ohio. Partly because of this,
we had a fairly sizeable Ohio contingent at the conference: Gerald
Anglin (Litel), Alison Brown (Ohio Supercomputer Center), Sally
Cousino (Ohio Bell), Nick Farmer (Chemical Abstracts), myself (CAST),
Jerry Hammett (State of Ohio), Don Olvey (OCLC), Tim Steiner (State of
Ohio), and Ron Vidmar (State of Ohio). I found one of the most
successful parts of the conference to be our caucuses, both before and
after the conference.
Other papers presented at the conference included "Information
Infrastructure for the 1990s: A Public Policy Perspective," by Lewis
Branscomb; "Technology Issues in the Design of the NREN," by Leonard
Kleinrock; "Life after Internet: Making Room for New Applications," by
Larry Smarr and Charles Catlett; "A Coming of Age: Design Issues in
the Low-end Internet," by Ken Klingenstein; and "The NREN as
Information Market: Dynamics of Public, Private, and Voluntary
Publishing," by Brian Kahin. Copies of all the papers are available
for loan from the CAST office.
There were also smaller sessions involving presentations on current
uses of the Internet. One presentation was by Allan Weis, from
Advanced Network and Services, Inc., ANS, a "nonprofit organization
dedicated to the advancement of education and research." ANS is funded
by IBM and MCI to help build computer networks.
As with all conferences, some of the most important discussions went
on in the hallways and at meals and some of the most important results
were the contacts made. Despite my dismay at finding myself at a
conference with presenters who were all white males (including one who
addressed the group as "gentlemen"), I think the conference was
excellently organized and run. I applaud the organizers for focussing
us on such an important issue: information infrastructure for the
1990s.
==============================================================================
/ /
/ File 02 / NIA068 /
/ Tekno DCS Help /
/ Part 2 of 2 /
/ Judge Dredd /
/ /
This is the 2nd part of the DCS help. Enjoy.
help accounting
Resource Accounting provides a transaction file of system usage information
for both the user and the system. The collected data allows you to bill
individual users for resources used and to measure overall system usage.
To tailor the accounting information and format it to your application, you can
write a report program. This program accesses the transaction file, reads the
required data fields, and writes a report for you.
For more information, type:
HELP ACCOUNTING START Starting Resource Accounting
HELP ACCOUNTING STOP Stopping Resource Accounting
HELP ACCOUNTING SET Changing accounting parameters
HELP ACCOUNTING SHOW Displaying accounting information
See the RSX-11M-PLUS and Micro/RSX System Management Guide for more
information.
help ascii
Octal Values for the ASCII Character Set -- ASCII is a code used to
translate letters, numbers, and symbols that people can understand into
a code which the computer can use. Most RSX-11M-PLUS and Micro/RSX functions
requiring numerical values for characters use octal ASCII.
000 NUL 020 DLE 040 SP 060 0 100 @ 120 P 140 ` 160 p
001 SOH 021 DC1 041 ! 061 1 101 A 121 Q 141 a 161 q
002 STX 022 DC2 042 " 062 2 102 B 122 R 142 b 162 r
003 ETX 023 DC3 043 # 063 3 103 C 123 S 143 c 163 s
004 EOT 024 DC4 044 $ 064 4 104 D 124 T 144 d 164 t
005 ENQ 025 NAK 045 % 065 5 105 E 125 U 145 e 165 u
006 ACK 026 SYN 046 & 066 6 106 F 126 V 146 f 166 v
007 BEL 027 ETB 047 ' 067 7 107 G 127 W 147 g 167 w
010 BS 030 CAN 050 ( 070 8 110 H 130 X 150 h 170 x
011 HT 031 EM 051 ) 071 9 111 I 131 Y 151 i 171 y
012 LF 032 SUB 052 * 072 : 112 J 132 Z 152 j 172 z
013 VT 033 ESC 053 + 073 ; 113 K 133 [ 153 k 173 {
014 FF 034 FS 054 , 074 < 114 L 134 \ 154 l 174 |
015 CR 035 GS 055 - 075 = 115 M 135 ] 155 m 175 }
016 SO 036 RS 056 . 076 > 116 N 136 ? 156 n 176 ~
017 SI 037 US 057 / 077 ? 117 O 137 _ 157 o 177 DEL
See also HELP ASCII DECIMAL for the decimal values required by EDT and
HELP ASCII HEXADECIMAL for hexadecimal values.
help bad
The Bad Block Locator Utility (BAD) tests disks and DECtapes for
the location and number of bad blocks. BAD then records this bad
block information on the volume. Then you use the Monitor
Console Routine (MCR) command INI, which allocates the bad
blocks to the bad block file [0,0]BADBLK.SYS. The bad blocks are
marked as in-use and therefore cannot be allocated to other
files.
You can use BAD in its task version, which runs at the same time
as other tasks, or in its standalone version included in
[6,54]BRUSYS.SYS, which runs by itself on the computer. The
standalone version is required if you have a system with a single
disk drive.
The command line for BAD is shown next.
Format
ddnn:[/switch[...]]
Parameters
ddnn
Specifies a physical device.
switch
Specifies an optional switch that qualifies the BAD command line. Multiple
BAD switches for a device must be specified on one line. If you do not
specify any switch, BAD begins its pattern checking of individual blocks.
For more information on BAD switches, type HELP BAD SWITCHES.
help basic
PDP-11 BASIC-PLUS-2 is a layered product supported on RSX-11M/M-PLUS
systems. To invoke BASIC-PLUS-2, type the BP2 command: >BP2.
BASIC-PLUS-2 may be installed under a name other than BP2. In this
case, type the three-character name assigned by your system manager.
HELP is available on BASIC-PLUS-2 concepts, statements, functions, and
commands. You can get HELP both at the MCR command level and
within the BASIC environment. For BASIC-PLUS-2 V2.0, HELP topics
available at the MCR command level are:
ARRAYS CONSTANTS DIRECTIVES LABELS QUALIFIERS
CHARACTER CONVENTIONS EXPRESSIONS LINE STATEMENTS
COMMANDS DATA_TYPES HELP MODIFIERS VARIABLES
COMMENTS DEBUGGER IMMEDIATE
HELP on these topics, plus associated subtopics, also is available
within the BASIC environment.
To access HELP text from the MCR command level, type: >HELP/BP2 topic.
To access HELP files within the BASIC environment, first invoke BASIC
with the BP2 command and then type HELP in response to the
BASIC-PLUS-2 prompt.
help bck
RMSBCK copies standard RMS-11 files from one medium to another
(disk-to-disk or disk-to-tape), translating the data into a
special backup format. The backup copy contains the source
file's attributes (with the exception of file placement).
Backup files can be accessed properly only by the RMSRST utility
(type HELP RST for more information). User programs cannot
change backup data.
RMSBCK can use magnetic tapes with ANSI-standard labels only.
However, the backup data written by the utility between the
labels may not comply with ANSI standards.
To invoke installed RMSBCK:
BCK [command-string]
To invoke uninstalled RMSBCK:
RUN $RMSBCK
Type HELP BCK COMMAND for an explanation of RMSBCK's command line.
Type HELP BCK SWITCHES for an explanation of RMSBCK's switches.
See the RMS-11 Utilities manual for more information.
help bru
The Backup and Restore Utility (BRU) allows you to back up and restore
Files-11 volumes. You can use BRU to transfer files from a volume to a
backup volume (or volumes) to ensure that a copy is available in case
the original files are destroyed. If the original files are destroyed,
or if for any other reason the copy needs to be retrieved, you can
restore the backup files with BRU. In the process of copying, BRU also
reorganizes and compresses files for efficient storage and access.
You can use BRU stand alone as well as on line. BRUSYS is the
standalone version.
BRU can also be invoked through the DIGITAL Command Language (DCL)
command BACKUP.
The command line for BRU is shown next.
Format
/qualifier[...] indevice[,...][filespec[,...]] outdevice[,...]
Parameters
qualifier
Specifies any of the command qualifiers. If two or more qualifiers are
specified, they must be contiguous, that is, separated with a slash only.
You can use a shorter form of a qualifier as long as it is unique.
All BRU
qualifiers are unique to three characters.
indevice
Specifies the input device you want to transfer files from. In a backup
operation, the input device contains the files you want to safeguard. In
a restore operation, the input device contains the backup set you are
restoring.
Devices are specified in the following form:
ddnn:
filespec
Specifies the file specification used to select particular files or
categories of files to back up or restore. A file specification takes the
following form:
[directory]filename.type;version
outdevice
Specifies the output device you want to transfer the files to. In a
backup operation, the output device contains the backup set you want to
create. In a restore operation, the output device is the disk that
receives the files you are restoring.
The format of outdevice is the same as for indevice (described
previously). A file specification may not be placed after the output
device.
Type HELP BRU STANDALONE for more information on standalone BRU.
Type HELP BRU QUALIFIERS for a list of the qualifiers for BRU.
Type HELP BRU EXAMPLES for examples of BRU operations.
help cda
CDA helps you determine the cause of system crashes by analyzing and
formatting a memory dump created by the Executive Crash Dump Module.
You can use switches to select the information that CDA formats and
lists.
The general form of the command line is:
>CDA [listfile/sw],[binaryfile/sw]=[symbolfile/STB],crash-input[/sw]
listfile the human-readable CDA output listing
binaryfile a copy of the binary data the crash dump module writes
on the crash dump device
symbolfile the symbol definition file (RSX11M.STB) for the crashed system
crash-input the source of the binary input to CDA; you specify the
crash dump device or a binary file created by CDA
in a previous analysis
For more CDA information, type:
HELP CDA LIST (for the list file switches)
HELP CDA BINARY (for the binary file switch)
HELP CDA ANALYSIS (for the crash-input file switches)
See the RSX-11M/M-PLUS Crash Dump Analyzer Reference Manual for more
information.
help cmp
The File Compare Utility (CMP) compares two ASCII text files. The files are
compared line by line to determine whether parallel records are identical.
The command line for CMP is shown next.
Format
[outfile[/switch[...]]=] infile1,infile2
Parameters
outfile
Specifies the file specification for the output file. The format for
entering file specifications is as follows:
ddnn:[directory]filename.type;version
switch
Specifies switches that you apply to the output file specification.
Some of the switches can be negated and some are mutually exclusive.
infile1
Specifies the file specification for the input file to be compared to
infile2. The file name of this file must be specified. The default file
type is MAC.
infile2
Specifies the file specification for the input file to be compared to
infile1. You do not need a complete file specification. The specifications
for infile1 are used as defaults for any unspecified portions of in file2.
Type HELP CMP SWITCHES for descriptions of the CMP switches.
help cnv
RMSCNV reads records from an RMS-11 file of any type and converts
them into another RMS-11 file of any type. RMSCNV uses standard
RMS-11 file access methods. For initial indexed file loading,
use RMSIFL (type HELP IFL).
To invoke installed RMSCNV:
CNV [command-string]
To invoke uninstalled RMSCNV:
RUN $RMSCNV
Type HELP CNV COMMAND for an explanation of RMSCNV's command line.
Type HELP CNV SWITCHES for an explanation of RMSCNV's switches.
See the RMS-11 Utilities manual for more information.
help cobol
COBOL[/qualifier[,s] filespec
The default extension on filespec is .CBL.
Command Qualifiers:
/[NO]ANSI_FORMAT /[NO]LIST[:filespec]
/[NO]CHECK[:arg] /[NO]NAMES:xx
ALL /[NO]OBJECT:filespec
[NO]BOUNDS /[NO]OVERLAY_DESCRIPTION
NONE /[NO]SHOW:[NO]MAP
[NO]PERFORM /[NO]SKELETON
/CODE:[NO]CIS /[NO]SUBPROGRAM
/[NO]CROSS_REFERENCE /TEMPORARY:device
/[NO]DEBUG /[NO]TRUNCATE
/[NO]DIAGNOSTICS[:filespec] /[NO]WARNINGS:[NO]INFORMATIONAL
The COBOL command invokes the COBOL-81 compiler if it is installed in
your system. See your system manager to determine if the COBOL-81
compiler is installed.
For additional information on a qualifier, type HELP COBOL qualifier.
COBOL can also be used to invoke PDP-11 COBOL (COBOL/C11). For more
help on COBOL/C11, type HELP COBOL C11.
help configure
Reconfiguration is the process of physically and logically connecting and
disconnecting various system resources. By reconfiguring your system, you can
define a set of hardware resources that are accessible from the online
system.
The reconfiguration services consist of three components: a command
interface (CON), a loadable driver (RD:), and a privileged reconfiguration task
(HRC). You must have enough space in memory to contain both CON and HRC at the
same time; otherwise, CON commands fail.
To use the reconfiguration services, invoke the command interface by typing
CON. Then, enter CON commands at the CON> prompt.
Additional help is available on the following commands:
BUILD CLEAR DISPLAY ESTATUS
HELP IDENT LINK LIST
OFFLINE OFFLINE_MEMORY ONLINE ONLINE_MEMORY
SET SWITCH UNLINK
To display information about a command, type HELP CONFIGURE commandname.
help coral
CORAL
The CORAL command invokes the PDP-11 CORAL 66 Compiler.
The general form of the CORAL command is:
COR[AL] [object],[listing]=source1[,source2...][/qualifiers]
where object, listing, source1, source2 ... are standard file specifications.
Qualifiers are not position-sensitive; they may be placed after any file
specification in the command line.
Qualifiers:
/BC /CR /IE /IS /LI /NL /OP /OS
/PI /PS /RO /SP /TE /TR /WI
For information on a particular qualifier, type HELP CORAL qualifier.
help cot
The console output task (COT..) communicates with the Console Logger.
The following is a list of the privileged commands you can use:
SET /COLOG (nonprivileged) Displays Console Logging status
SET /COLOG=ON Starts Console Logging
SET /COLOG=OFF Stops Console Logging
SET /COLOG/COTERM=TTnn: Reassigns the console terminal
SET /COLOG/COTERM Enables the console terminal
SET /COLOG/NOCOTERM Disables the console terminal
SET /COLOG/LOGFILE=filename Reassigns the console log file
SET /COLOG/LOGFILE= Opens a new version of the current log
file
SET /COLOG/LOGFILE Opens a new version of the file
LB:[1,4]CONSOLE.LOG
SET /COLOG/NOLOGFILE Disables the console log file
The /COTERM, /NOCOTERM, /LOGFILE, and /NOLOGFILE options can be
specified with each other, with SET /COLOG, or with SET /COLOG=ON.
See the RSX-11M-PLUS and Micro/RSX System Management Guide for
more information on the Console Logger and the COT... task.
help def
The DEFINE LOGICALS (DFL) command assigns, deletes, and displays
logical name assignments. Logical names can be assigned to devices,
all or part of a file specification, and to other logical names.
Formats:
DFL = ! Deletes all local logical assignments
DFL ens=lns[/keyword(s)] ! Creates logical name assignments
DFL =[lns][/keyword] ! Deletes logical name assignments
DFL [/keyword(s)] ! Displays logical name assignments
Keywords (privileged options):
/ALL /GR
/TERM /GBL or /SYSTEM
/LOGIN /FINAL
For more information on the keywords, type: HELP DFL keyword
For help on the DFL command formats, type: HELP DFL CREATE
HELP DFL DISPLAY
HELP DFL DELETE
help des
RMSDES is an interactive utility that allows you to design and
create RMS-11 sequential, relative, and indexed files. To design
a file, you specify the file's attributes: 1) interactively, by
using the RMSDES SET command, or 2) from an existing, external
file, by using the RMSDES GET command, or 3) by using an indirect
command file to execute RMSDES commands.
DES Invokes installed RMSDES for an
interactive session
DES filename[.ext] [type] Invokes RMSDES and creates a file
from an existing file
DES @filename[.CMD] Invokes RMSDES by using an indirect
command file
RUN $RMSDES Invokes uninstalled RMSDES
After you have invoked RMSDES, you can type HELP or ? to
obtain additional information.
See also the RMS-11 Utilities manual for more information.
help dsp
RMSDSP displays a concise description of any RMS-11 file, including
container files, that is, RMS-11 files that were backed up to an ANSI-
labeled magtape using RMSBCK (type HELP BCK for more information).
To invoke installed RMSDSP:
DSP [command-string]
To invoke uninstalled RMSDSP:
RUN $RMSDSP
Type HELP DSP COMMAND for an explanation of RMSDSP's command line.
Type HELP DSP SWITCHES for an explanation of RMSDSP's switches.
See the RMS-11 Utilities manual for more information.
help dsc
The Disk Save and Compress Utility (DSC) copies a Files-11 disk either to
disk or to tape and from DSC-created tape back onto disk. At the same time,
DSC reallocates and consolidates the disk data storage area: it concatenates
files and their extensions into contiguous blocks whenever possible and,
therefore, reduces the number of retrieval pointers and file headers required
for the same files on the new volume.
DSC copies files that are randomly scattered over a disk volume to a new
volume, without the intervening spaces. This eliminates unused space between
files and reduces the time required to access them.
The command line for DSC is shown next.
Format
outdev[,...][filelabel1][/switch[...]]=indev[,...][filelabel2][/swit
ch[...]]
Parameters
outdev
Specifies the physical volume or volumes to which data is copied. The
format for outdev is as follows:
ddnn:
filelabel1
Identifies the output disk's Volume ID, the tape file, or the tape set
that DSC creates in a data transfer.
switch
Specifies one or more of the optional DSC switches.
indev
Specifies the physical volume or volumes, in the same format as outdev,
from which data is copied.
filelabel2
Identifies the DSC-created tape file that is being transferred to disk or
is being compared.
For a list of the DSC switches, type HELP DSC SWITCHES.
help dmp
The File Dump Utility (DMP) enables the user to examine the contents of a
specific file or volume of files. The output may be formatted in ASCII,
octal, decimal, hexadecimal, or Radix-50 form and dumped to any suitable
output device such as a line printer, terminal, magnetic tape, DECtape,
or disk.
You can dump the header and/or virtual blocks of a file, portions of blocks,
or the virtual records of a file.
DMP operates in two basic modes: file mode and device mode. File mode is
used to dump virtual records or virtual blocks, and device mode is used
to dump logical blocks (the /BL switch is a required parameter in device m
ode).
The command line for DMP is shown next.
Format
[outfile][/switch[...]][=inspec][/switch[...]]
Parameters
outfile
Specifies the output file. The format for entering file specifications is
as follows:
ddnn:[directory]filename.type;version
switch
Specifies any of the DMP switches.
inspec
Specifies the input device and file or input device only.
Type HELP DMP SWITCHES for a description of the DMP switches.
help dte
Data Terminal Emulation (DTE) allows you to log into another DIGITAL computer
system from a terminal connected to a Micro/RSX or RSX-11M-PLUS system.
The other DIGITAL system can be an RSX-11M/M-PLUS system, a VAX/VMS system
running VAX-11/RSX, a Professional Personal Computer, or a Micro/RSX system.
Once a local RSX terminal is logged in to an external system, the external
system becomes the host system. The host system views the system running DTE as
remote. Once you have logged into the host system through DTE, you can use the
File Transfer Utility (MFT) to copy and delete files between the local and the
host systems.
Additional HELP is available on the topics summarized below. To access this
information, type HELP DTE topic.
Topics: CONNECT DISCONNECT SET_HOST
HOOKUP FILE_TRANSFER DCL_COPY
DCL_DELETE MCR_COPY MCR_DELETE
help edi
EDI is a line-oriented editor that allows you to create and modify text files.
EDI operates on most ASCII text files.
EDI accepts commands that determine its mode of operation and control its
actions on input files, output files, and working text buffers.
The command line for EDI is shown next.
Format
filespec
Parameter
filespec
Specifies a file specification in the following format.
ddnn:[directory]filename.type;version
After EDI has identified the input file or created the new file, it is ready
for commands.
EDI runs in two control modes: Edit (command) mode and Input (text) mode.
Edit mode is invoked automatically when you specify an existing file.
In edit mode, EDI issues an asterisk (*) prompt. EDI acts upon commands and
data to open and close files; to bring lines of text from an open file; to
change, delete, or replace information in an open file; or to insert single
or multiple lines anywhere in a file.
Input mode is invoked automatically at program startup if you specify a
nonexistent file.
When in input mode, EDI does not issue an explicit prompt. Lines that you
enter at the terminal are treated as text and are inserted into the output
file. When you complete each input line by pressing the RETURN key, EDI
sends a line feed to the terminal.
To switch from edit mode to input mode, enter the Insert command and press
the RETURN key. To return to edit mode, press the RETURN key as the only
character on an input line. EDI will issue the asterisk prompt, which
signifies edit mode.
EDI provides two modes you can use to access and manipulate lines of text in
the input file. (A line is defined as a string of characters terminated by
pressing the RETURN key.) The two modes are as follows:
Line-by-line mode Allows access to one line of text at a time. Backing up
is not allowed.
Block mode Allows free access within a block of lines, on a line-by-
line basis. Backing up within a block is allowed. Backing
up to previous blocks is not allowed. Block mode is the
default text access mode.
Type HELP EDI COMMANDS for a list of the EDI commands.
help edt
EDT, the DEC Editor, has its own HELP files, which you can access from
within EDT, using the EDT HELP command. To access EDT from MCR, use a
command in the following form:
EDT[/qualifiers] [outfile,][journal][=] infile[,command]
The optional output filespec permits you to give a new name to the
outfile. The journal filespec permits you to give a new name to the
journal file. The equals ( = ) is required if you use either or both
of these two filespecs. The infile is the file you wish to edit.
The optional command filespec refers to a file of EDT commands you
may wish to have read in and executed before you start editing.
There are two qualifiers to the EDT command: /RO and /RECOVER.
EDT/RO infile means you wish read-only access to the file.
EDT/RECOVER infile recovers edits from an editing session that had
been interrupted by a system crash or other problem.
See the EDT Editor Manual for more information on EDT.
help error_logger
The RSX error logging system consists of four tasks: ELI, ERRLOG, RPT, and
CFL. All command descriptions in these help files use MCR syntax. If your
system's Command Line Interpreter (CLI) is DCL, you may wish to use DCL
commands to operate error logging. For help with DCL commands, type HELP.
The Error Log Interface (ELI) task controls the operation of the error
logging task (ERRLOG). ELI turns error logging on and off, changes
error limits, and names error log files and backup files. ERRLOG also
provides a warning whenever one of the error limits is reached.
The Report Generator task (RPT) produces error log reports based on
information in control file modules.
The Control File Language (CFL) compiler compiles the error log control
file modules used by RPT.
Type HELP ERROR_LOG ELI for more information about ELI commands.
Type HELP ERROR_LOG WARNINGS for more information about error limits.
Type HELP ERROR_LOG CFL for information about the CFL commands.
Type HELP ERROR_LOG RPT for more information about the RPT commands
that generate error log reports.
help executive
Help is available for all Executive directives. Type
HELP EXECUTIVE macrocall
for help on the directive that corresponds to the macro call. (Note
that the terminating $ should be eliminated from the macro call when
requesting help. For example, type HELP EXECUTIVE ABRT for help on
the ABRT$ directive.)
You can also type
HELP EXECUTIVE directivename
where directivename is the name of the directive. Remember that many
directives have similar names. Type the full name of the directive as
a single word with underscores between words. For example:
HELP EXECUTIVE SEND_REQUEST_AND_CONNECT
Type HELP EXECUTIVE DIRECTIVES for a list of the directives and their
macro call names.
Type HELP EXECUTIVE DIC for information on the Directive Identification
Codes and HELP EXECUTIVE ERRORS for a list of the error codes returned
in the Directive Status Word.
help fcs
File Control Services (FCS) is a collection of record management
macros and subroutines used to maintain and manipulate data
files. FCS, in contrast to RMS-11, supports only sequential and
fixed record length file organizations. This HELP file contains
brief summaries of the MACRO-11 assembly language interface to
FCS. See also, HELP FCS:
BIGBUFFERS ERRORS ALL FDB INTRO
DATA-STRUC ERRORS err FLUSH MACRO
DATA-SET ERRORS nnn FILES-11 USER-TASK
ERRORS EXAMPLE FILE-SPEC
Code Name Meaning
--------- -------
err Indicates a three-character error code name.
nnn Indicates a three-digit octal error code number.
help flx
The File Transfer Utility Program (FLX) allows you to use foreign volumes
(not in Files-11 format) in DIGITAL's DOS-11 or RT-11 format. FLX converts
the format of a file to the format of the volume the file is being
transferred to.
FLX can be used to initialize and list directories of cassettes and RT-11 or
DOS-11 file-structured volumes. FLX can also be used to delete files from
RT-11 or DOS-11 formatted volumes.
FLX performs file transfers (and format conversions, as appropriate) as
follows:
o DOS-11 to Files-11 and DOS-11 volumes
o Files-11 to DOS-11, Files-11, and RT-11 volumes
o RT-11 to RT-11 and Files-11 volumes
FLX supports all Files-11 devices, including RSX-format cassettes. The
cassettes are volumes that you have initialized using the MCR command
INITVOL or the DCL command INITIALIZE. DOS-11 and RT-11 volumes are
initialized using FLX. On RSX-11M-PLUS operating systems, DOS-11 and RT-11
volumes must be mounted with foreign characteristics before you can use
FLX.
The general format for entering FLX command lines is shown next.
Format
[ddnn:[[directory]]/switch[...]=]infile[,...]/switch[...]
Parameters
ddnn
Specifies the device for the FLX output.
directory
Specifies the directory on the output device.
Do not specify a directory if the output device is in RT-11 format.
switch
Specifies one of the FLX switches.
infile
Specifies the input file specification.
The format for entering file specifications is as follows:
ddnn:[directory]filename.type;version
The directory is not specified for RT-11 volumes.
FLX provides three types of switches for file transfers:
Volume format Specifiy the format of the volume on which files are stored;
that is, Files-11, DOS-11, or RT-11 volumes.
Transfer mode Provide the means for specifying the format of a file on a
non-Files-11 volume. Files can be in formatted ASCII,
formatted binary, or file image format.
Control Provide control functions useful during file transfers.
Using file control switches, you can specify, for example,
the number of blocks to be allocated to an output file or
the directory for an output file.
Type HELP FLX SWITCHES for a list and description of the FLX switches.
help fmt
The Disk Volume Formatter (FMT) utility formats and verifies disk cartridge,
disk pack, fixed media disk, and flexible disk volumes under any RSX-11M-PLUS
operating system that includes online formatting support in the Executive.
In general, FMT performs the following functions:
o Writes a complete header for each sector of the volume it is formatting.
o Verifies the address contents of each sector header.
o Sets the density for RX02 (DY-type) diskettes.
o Lets you specify an error limit for the volume being formatted. FMT
terminates processing when the error limit is reached.
o Lets the Bad Block Locator task run (spawn) if your system permits
spawned tasks.
FMT can also be invoked through the DCL command INITIALIZE/FORMAT.
The command line for FMT is shown next.
Format
ddnn:[/switch[...]]
Parameters
ddnn
Specifies the volume you are formatting.
switch
Specifies an FMT switch. Not all switches can be used with all device
types.
To terminate FMT, press CTRL/Z following the FMT prompt.
Type HELP FMT SWITCHES for a list of the FMT switches.
help fortran
F77 [obj-file] [,list-file] = input-file[,s][/switch[,s]]
You can also use the F77 command in interactive mode, which
permits you to enter multiple compilation commands (lines).
To invoke the interactive mode (if you have installed the
image of the FORTRAN-77 compiler as F77), you simply type:
F77 <RET>
Regardless of the name under which the PDP-11 FORTRAN-77
compiler is installed, the compiler displays the following prompt:
F77>
You may use the following format to enter the command:
F77>[obj-file] [,list-file] = input-file[,s][/switch[,s]]
F77>[obj-file] [,list-file] = input-file[,s][/switch[,s]]
F77> ...
F77> ...
F77> ?Z
Many switchs have a negative form that negates the action
specified by the positive form. You can obtain the negative
generally by following the required slash with a minus sign
or the characters NO. For example, /-SP or /NOSP.
/[NO]CK /CO:n
/[NO]DE /[NO]F77
/ID /[NO]I4
/LA (effective in the MCR interactive mode only)
/LI:n /[NO]RO
/SP /[NO]TR:arg
/[NO]ST[:arg] ALL
ALL BLOCKS
NONE LINES
SOURCE NAMES
SYNTAX NONE
/[NO]WF:n /WR
Type HELP FORTRAN switch for more information.
help ifl
RMSIFL reads records from any type of RMS-11 file and loads them into
an existing, empty, indexed file. RMSCNV also populates indexed files,
but in a nonoptimized fashion (type HELP CNV).
To invoke installed RMSIFL:
RMSIFL [command-string]
To invoke uninstalled RMSIFL:
RUN $RMSRMSIFL
Type HELP IFL COMMAND for an explanation of RMSIFL's command line.
Type HELP IFL SWITCHES for information on RMSIFL's switches.
See the RMS-11 Utilities manual for more information.
help indirect
The Indirect Command Processor allows CLI command lines to be
placed in a file. The file is then executed as though the command lines
were entered from a terminal. Indirect also supports other
numeric and string manipulation commands.
A summary of commands and special symbols can be obtained by typing
HELP INDIRECT SUMMARY
Individual command descriptions can be obtained by typing
HELP INDIRECT commandname
Operators (relational and arithmetic) are described at
HELP INDIRECT OPERATORS
Special symbol descriptions can be obtained by typing
HELP INDIRECT symbolname
NOTE: symbolname does not include the <sym> angle brackets.
A list of Indirect error messages, including their severity class numbers,
can be obtained by typing
HELP INDIRECT MESSAGES
help open
OPE[N] memory-address [+ n] [/keyword]
OPE[N] memory-address [- n] [/keyword]
Keywords: /AFF=[CPx,UBy] /CPU=CPx
/DRV=dd: /KNL
/KNLD /KNLI
/REG=region-name /TASK=taskname
/TASKD /TASKI
+ or - n One or more optional octal numbers to be added to or
subtracted from the memory address.
The OPENREGISTER command allows you to examine and modify a word of mem
ory.
To open a location within a task, the task must be fixed in memory.
This is a privileged command.
For information on the keywords, type HELP OPEN keyword.
For help on the OPEN command display format, type HELP OPEN DISPLAY.
>delete the TOP when e editing on the O!!!!!!
MCR -- Not logged in
help iox
The I/O Exerciser (IOX) detects I/O problems on the disk, terminal, and tape
units in your hardware configuration. IOX tests the hardware (and accompanying
software) by performing repeated operations to the same unit.
IOX exercises devices on two kinds of volumes: non-file-structured (NFS) and
file-structured (Files-11). They are defined as follows:
NFS Volumes All tapes and terminals, some disks.
Files-11 Volumes Disks initialized with the MCR command INITIALIZE.
They have a home block and a Files-11 structure.
Additional help is available on the following topics:
Running an I/O exercise Type HELP IOX RUN
IOX commands Type HELP IOX COMMANDS
IOX operating modes Type HELP IOX MODES
IOX reports Type HELP IOX OUTPUT
help help indirect
The Indirect Command Processor allows CLI command lines to be
placed in a file. The file is then executed as though the command lines
were entered from a terminal. Indirect also supports other
numeric and string manipulation commands.
A summary of commands and special symbols can be obtained by typing
HELP INDIRECT SUMMARY
Individual command descriptions can be obtained by typing
HELP INDIRECT commandname
Operators (relational and arithmetic) are described at
HELP INDIRECT OPERATORS
Special symbol descriptions can be obtained by typing
HELP INDIRECT symbolname
NOTE: symbolname does not include the <sym> angle brackets.
A list of Indirect error messages, including their severity class numbers,
can be obtained by typing
HELP INDIRECT MESSAGES
help lbr
The Librarian Utility Program (LBR) allows you to create, update, modify,
list, and maintain library files. LBR organizes files into library modules
so that you have rapid and convenient access to your files.
Library files contain two directory tables: the EPT and the MNT. The EPT
contains entry point names that consist of global symbols defined as entry
points in MACRO source programs. The MNT contains names of the modules in
the library. Both tables are ordered alphabetically.
Their are three types of libraries: object library files which contain
object files, macro library files which contain source macro files, and
universal library files which contain modules inserted from any kind of file
whether it be a program or text.
The general command line for LBR is shown next.
Format
outfile[,listfile]=infile[,...]
The format for entering file specifications is as follows:
ddnn:[directory]filename.type;version[/switch]
For a list of the LBR switches, type HELP LBR SWITCHES.
help macro
The Macro Assembler (MAC) utility program assembles one or more
MACRO-11 language source files into an object file. The command line
syntax is:
>MAC file.OBJ[/sw],file.LST[/sw]=file.MAC[/sw],file.MAC[/sw]. . .
or
>MAC
MAC>file.OBJ[/sw],file.LST[/sw]=file.MAC[/sw],file.MAC[/sw]. . .
MAC>?Z ! or another command line if another assembly is to be done
Type HELP MAC SWITCHES for a list of available switches.
help mag
The Magtape Control Task, MAG, lets you control magnetic tapes.
The format for the MAG command is as follows:
>MAG SET mmnn:/keyword[/keyword/keyword...] (mmnn: is the magtape unit)
MAG supports the following switches:
/BS Block size for magtape
/CC Type of carriage control
/EOF Specifies that MTAACP should return IE.EOF
/EOT Specifies that MTAACP should return IE.EOT
/EOV Specifies that MTAACP should return IE.EOV
/INITIALIZE Specifies the volume label with which the tape will
be initialized
/POS Specifies the number of files to spaced
/RS Specifies the record size
/REWIND Rewinds magtape to BOT
Type HELP MAG <switch> for more information on each switch.
See Appendix G of the IAS/RSX-11 I/O Operations Reference Manual for details.
help odt
The On-Line Debugging Tool (ODT) is an interactive debugging aid that is
added to a task by the Task Builder /DA (debugging aid) switch or the
/DEBUG qualifier to the LINK command. ODT receives control when you start
your task. ODT can:
o Control task execution
o Display or alter the contents of memory locations or registers
o Search and fill memory
o Perform calculations
You can execute your task gradually or in steps, set breakpoints, open
locations for examination, display bytes or words (in various formats),
and modify task locations. Thus, you can examine and modify your task
while running it, without rebuilding it. For a complete explanation of
ODT, see the RSX-11M-PLUS and Micro/RSX Debugging Reference Manual.
For more information, type HELP ODT subject:
COMMAND INTERNAL_REGISTER OPERATOR
DISPLAY INTERRUPT RETURN
GENERAL_REGISTER LINKING VARIABLE
help pip
The Peripheral Interchange Program (PIP) is a file utility program that
transfers data files from one standard Files-11 device to another. PIP also
performs file control functions. You invoke PIP file control functions by
means of switches and subswitches.
The command line for PIP differs for each function. Therefore, the comm and
line formats are described with the PIP switches.
Type HELP PIP SWITCHES for a list of the PIP switches and subswitches.
help pmd
PMD is the Postmortem Dump task. When a task aborts, PMD generates
a dump of its header and address space to aid in debugging.
You can make a task eligible for a Postmortem Dump in any of three ways:
o Build the task with the TKB switch /PM or the DCL command LINK/POSTMORTEM
o Install the task with the /PMD=YES switch or DCL command INSTALL/POSTMORTEM
o Abort the task with the /PMD switch or the DCL command ABORT/POSTMORTEM
Postmortem Dumps are written on the system disk in directory [1,4] in the file
taskname.PMD and are automatically spooled by PMD. (Note that the print
spooler automatically deletes all files with the type .PMD after printing
them.)
PMD also produces Snapshot Dumps of running tasks (see HELP PMD SNAPSHOT).
help print
PRI [[queuename:][jobname][/jobsw]=]file[/filesw] . . .
The PRINT command submits one or more files for printing. The files are
grouped together into a single print job and are all printed
together.
The optional queuename parameter allows you to submit your job to a queue
other than the default queue PRINT. The optional jobname parameter allows you
to give your print job a name. If you do not specify a job name, the name of
the first file in the job is used as the job name.
The following job switches are available:
/[NO]AD jobname queuename:
/AF /[NO]JO /[NO]RES
/CO:jobcopies /LE:pagelength /[NO]TR
/[NO]FL /[NO]LO
/FO:formnumber /PA:n=files
/[NO]HO /PRIO:priority
If you specify a job switch, the equal sign (=) is required in the PRI command.
The following file switches are available:
/CO:filecopies /[NO]DE /[NO]TR
help queue
QUE [queue:][job]/cmd
QUE /EN:n/cmd
The QUE command allows you to control the system's queues, jobs in the queues,
and the files that make up the jobs in the queues. The available commands
are listed below. For additional help, see HELP QUE command.
AS DEA FU LI STA
BA DEL HO MOD STO
BR EN IN REL UNBA
CR FI KIL SP UNSP
help rms
RMS-11 (Record Management Services for the PDP-11) is one of two file
systems supplied on RSX operating systems. It uses a series of user-callable
subroutines that implement sequential, relative, and indexed file
organizations. RMS-11 is accessible from MACRO-11, BASIC-PLUS-2, COBOL-11,
and other DIGITAL languages.
To display a list of RMS-11 error code explanations, type HELP RMS ERRORS.
Additional help is available on the following topics:
BCK (file back-up) CNV (file conversion)
DES (interactive file design) DEF (file definition)
DSP (file display) IFL (indexed file load)
RST (file restoration)
To obtain help on these topics, type HELP topic.
See also HELP RMS MACROS (for a list of RMS-11 macros) and HELP FCS (for
information on File Control Services (the alternate file system).
help rst
RMSRST restores files from magtape or disk that were backed up
using RMSBCK (type HELP BCK for more information) and produces
standard RMS-11 files as output. The structure, content, and
attributes of the restored files are those of the original files
when they were backed up. However, file placement will not be
restored.
To invoke installed RMSRST:
RST [command-string]
To invoke uninstalled RMSRST:
RUN $RMSRST
Type HELP RST COMMAND for an explanation of RMSRST's command line.
Type HELP RST SWITCHES for an explanation of RMSRST's switches.
See the RMS-11 Utilities manual for more information.
help shadow_recording
The SHADOW (SHA) command invokes the Shadow Recording control task.
Format:
>SHA command parameterlist
Commands:
ABORT ddnn: Stops shadow recording of a shadowed pair wh
ile
catch-up is in progress.
CONTINUE ddnn: TO ddxx: Restarts shadow recording on a pair of disks that
was previously being shadowed.
DISPLAY Displays all shadowed disk pairs.
START ddnn: TO ddxx: Starts shadow recording and initiates a catch-up
on the specified disk pair.
STOP ddnn: Stops shadow recording of a disk pair.
Parameters:
ddnn: Specifies the primary volume
ddxx: Specifies the secondary volume (which must be mounted as
foreign)
help slp
help submit
SUBMIT [[queuename:][jobname][/jobsw]=]file[/filesw] . . .
The SUBMIT command submits one or more batch files for processing on a
batch processor. The files are grouped into a single batch job and are
executed one after the other without interruption.
The optional queuename: switch allows you to submit your job to a queue
other
than the default BATCH. The optional jobname switch allows you to give y
our
job a name. If you do not specify a job name, the name of the first file
in the
job is used as the job name.
The following additional job switches are available:
/AF: /[NO]HO /[NO]LO
/[NO]PRIN:queue /PRIO:priority /[NO]RES
The following file switches are available:
/[NO]DE /[NO]TR
help sysgen
SYSGEN is the indirect command procedure used to tailor and build a version
of the RSX-11M-PLUS operating system for a particular installation. The SYSGEN
procedure asks questions about both the softw
are features you wish to include in your system, and about your system's
hardware configuration. SYSGEN uses that information to assemble and task
build an RSX-11M-PLUS operating system specifically tailored to your needs.
You should read both the System Generation and Installation Guide
and the Release Notes for this release of your operating system before
attempting to run the SYSGEN procedure. Attempts to run SYSGEN
without first consulting the documentation may yield undesired results.
You should also be familiar with the features and structure of
the RSX-11M-PLUS operating system before attempting to generate your own
system so you will understand the consequences of choosing or omitting
the various system options.
help syslib
SYSLIB is an object library containing various support routines that can be
included in a task. These HELP files describe most of the routines. To obtain
expanded information on any of the following SYSLIB routines, type:
HELP SYSLIB routine
The System Library contains the following types of support routines:
Register Handling Routines (For help, type HELP SYSLIB REGISTER)
Arithmetic Routines (For help, type HELP SYSLIB ARITHMETIC)
Data Conversion Routines (For help, type HELP SYSLIB DCONV)
Formatting Routines (For help, type HELP SYSLIB FORMAT)
Dynamic Memory Management
Routines (For help, type HELP SYSLIB DMEMORY)
Virtual Memory Management
Routines (For help, type HELP SYSLIB VMEMORY)
GCML Get Command Line Routine (For help, type HELP SYSLIB GCML)
EGCML Extended GCML Routine (For help, type HELP SYSLIB EGCML)
help tdx
TDX (Catch-All Task)
The RSX-11M-PLUS and Micro/RSX operating systems include a catchall task (TDX).
TDX "catches" commands that are not recognized by the DIGITAL Command
Language (DCL) or the Monitor Console Routine (MCR). If MCR receives an
unrecognized command, it searches for a task with that name and passes the
command line to TDX. TDX allows you to run uninstalled tasks and abbreviate
command names.
Any task installed with the task name ...CA. is treated as a catchall
task. The catchall task image is in the system library directory (usually
directory [3,54]) and is named TDX.TSK. Once installed, TDX checks the typed
command against its list of commands. If the commands match, TDX translates the
command into a valid MCR command.
TDX supports the following commands:
ATS CHD CHU CLR CRE CVT DEL DIR
DLG DLN FRE PUR SHQ SYS TDX TYP
For more information on each of the TDX pseudo-commands, type:
HELP TDX command
help tktn
TKTN is the Task Termination Notification program. When a task
aborts, TKTN displays the cause of the abort and the contents of the
task's registers on the terminal from which the task was running.
TKTN also displays device driver messages on the console, notifying
the operator when a device is not ready or when a device has been
dismounted.
See the RSX-11M-PLUS MCR Operations Manual or the RSX-11M-PLUS
Command Language Manual for a description of the TKTN messages.
help vmr
The Virtual Monitor Console Routine (VMR) is a privileged system task
that allows you to configure an RSX-11M-PLUS system image file.
VMR commands are a subset of Monitor Console Routine (MCR) commands.
VMR commands differ from MCR commands in that they are directed to the
disk image of a system rather than to the current running system. The
system image file that you configure by using VMR commands can later be
bootstrapped.
Before you run VMR, you need to be sure that certain requirements are met.
For help on preparing to run VMR, type HELP VMR PREPARATION.
You can use three methods to invoke VMR. For help on these methods, type
HELP VMR INVOKING.
After you invoke VMR, you can enter VMR commands. HELP is available for
the following commands:
ALT ASN CAN CON DEV INS LOA LUN
PAR REA RED REM RUN SAV SET TAS
TIM UNF UNL
For more information, type HELP VMR commandname.
help vfy
The File Structure Verification Utility (VFY) for Files-11 volumes provides
the ability to perform the following tasks:
o Check the readability and validity of a file-structured volume (default
function).
o Print the number of available blocks on a file-structured volume (the
Free switch (/FR)).
o Search for files in the index file that are not in any directory; that is,
files that are "lost" in the sense that they cannot be accessed by file
name (the Lost switch (/LO)).
o Validate directories against the files they list (the Directory Validation
switch (/DV)).
o List all files in the index file, showing the file ID, file name, and
owner (the List switch (/LI)).
o Mark as "used" all the blocks that appear to be available but are actually
allocated to a file (the Update switch (/UP)).
o Rebuild the storage allocation bit map so that it properly reflects the
information in the index file (the Rebuild switch (/RE)).
o Restore files that are marked for deletion (the Delete switch (/DE)).
o Delete bad file headers (the Header Delete switch (/HD)).
o Perform a read check on every allocated block on a file-structured volume
(the Read Check switch (/RC)).
There should be no other activity on the volume while VFY is executing. In
particular, activities that create new files, extend existing files, or
delete files should not be attempted while VFY is executing a function.
The command line for VFY is shown next.
Format
listfile,scratchdev=indev/switch
Parameter
listfile
Specifies the output file specification as follows:
ddnn:[directory]filename.type;version
scratchdev
Specifies the device on which the scratch file produced by VFY i
s to
be written. This parameter is in the following format:
ddnn:
indev
Specifies the volume to be verified in the same format as scratchdev.
If you do not specify the volume, the default is SY0.
switch
Specifies the function to be performed by VFY. Type HELP VFY SWITCHES
for a list of the VFY switches.
help zap
The Task/File Patch Program (ZAP) allows you to directly and modify task
image and data files on a Files-11 volume. Using ZAP, you can patch these
files interactively without reassembling and rebuilding the task.
ZAP performs many of the functions performed by the RSX-11 online debugging
utility, ODT. Thus, working knowledge of ODT is helpful in using ZAP.
ZAP provides the following features:
o Operating modes that allow you to access specific words and bytes in a
file, modify locations in a file, list the disk block and address
boundaries for each overlay segment in a task image file on disk, and open
a file for reading only.
o A set of internal registers that include eight Relocation Registers.
o Single-character commands that, with other command line elements, allow
you to open and close locations in a file and to display and manipulate
the values in those locations.
Except in read-only mode, the results of ZAP commands are permanent.
Although the ZAP program is relatively straightforward to use, patching
locations in a task image file requires knowing how to use the map (or
memory allocation file) generated by the Task Builder (TKB) and the listings
generated by the MACRO-11 assembler. These maps and listings provide
information you need to access the locations whose contents you want to
change.
The ZAP command line format is shown next.
Format
ddnn:[directory]filename.type;version/switch
After you enter the file specification, ZAP prompts with an underscore (_).
You terminate ZAP by entering the X command. This command exits you from ZAP
and returns control to your command line interpreter (CLI). For more
information on ZAP command line elements, type HELP ZAP ELEMENTS.
For more information on ZAP switches, type HELP ZAP SWITCHES.
ZAP provides two addressing modes and two access modes. For more information
on ZAP addressing and access modes, type HELP ZAP MODES.
---
okay, this with Part 01 (Refer: NIA068) is all the basic help on DCS.
==============================================================================
/ /
/ File 03 / NIA069 /
/ Computer Crime: System Security Controls [4] /
/ Guardian Of Time /
/ /
THE BASIC CONCEPT
Computer security reviews to identify and evaluate vulnerabilities,
calculate risks, and select controls have been conducted assuming
differences and uniqueness from one computer center to another b/c of their
one-of-a-kind development. Differences in physical facilities, computer
configurations, types or modes of computer usage, organization patters, and
computer application envrionmental factors have all been emphasized.
However, similarities in the use and security of computers are appearing in
many areas:
: Almost every computer center has secure area needs for housing of at
least one computer in one room and peripherals in the same or adjacent
room.
: Almost every well-run computer center has a procedure for physical access
control to facilities.
: Every well-run computer center has a procedure to assure secure backup
copies of data files and computer programs stored on computer media,
documentation, and computer supplies.
: Every computer center has logs and journals of computer usage and
performance that have importance for security.
: Every computer center has computer programs that contain controls to prevent
erroneous processing.
: Every computer center has computer programs requiring legal ownership
protection as indicated in SECTION III.
: Every well-designed computer center has some form of fire
detection/suppression capabilities.
: Every computer center has staff in positions of trust.
A new concept of baselines of security controls can be developed from these and
many other similar enviroments and vulnerabilities. A baseline of security
controls is a set of generally used controls meeting commonly desired control
objectives that should be present in every well-run computer center. The
justification for having them is derived from common usage and prudent
management rather than from explicit identification of vulnerabilities and
reduction of risk. If a baseline control is not selected for use, its absence
should be recorded or alternatives should be selected and justified.
A control objective is a condition or event that is to be avoided, deterred,
detected, prevented or recovered from. Examples are as follows:
: Avoid violations of laws and regulations
: Detect unathorized system use
: Prevent unauthorized access to sensitive areas.
A control is the policy, method, practice, device or programmed mechanism to
accomplish a control objective. A control has implentation variants that are
established in the detailed specifications for the control in a particular use.
Baseline controls have never before been identified, and it is not known how
many would qualify universally or w/in any specific organization. However, the
baseline concept is now feasible b/c of the control selection experience gained
as the computer security field matures. The 82 controls found in the study of
seven computer field sites are offered in Section VI as a preliminary step in
identifying baseline controls.
A baseline of security need not be a rigid, unalterable set of control
objectives and their required controls and variants. The purpose of a baseline
is to specify a minimum set of controls such that if a control is omitted,
there would be explicit reasons identified why it is absent or why an
alternative control is equivalent. If these exeptions from a baseline are
acceptable to the authority ultimately responsible for security, the baseline
could still be said to be the accepted criterion. In fact, this
exeption-taking is the process by which baselines evolve. When enough support
for an exception exists, a baseline is changed to include the exception as part
of the baseline.
A single, clear-cut baseline is improbable. As espoused by different experts
and organizations, baselines may be different. For example, differing
baselines may be established by insurance companies, banks and manufacturers.
Security experts, auditors and consultants may have differences of opinion over
inclusion of a control in a baseline but little disagreement about control
objectives. In addition, some controls and even some control objectives will
become obsolete as technology changes and advances. For these reasons, a
baseline is not identified as standard. Whereas a baseline may be called a
standard w/in any one domain (e.g., federal standards established by the US,
the US Department of Commerce, National Bureau of Standards, or a particular
company), the acceptance of general standards should be reserved for American
National Standards Institute adoption.
BENEFITS OF BASELINE CONTROLS
The success of the baseline concept lies in obtaining concurrence and
acceptance of a sufficient number of generally used controls by computer
security administrators and, in turn, by the management responsible for the
expenditure of resources for computer security. Certainly enough controls are
now identified in extensive security literature and exist as commercial
products. management must be willing to accept a recommended control justified
only by having a security administrator show that it is part of a baseline.
Prudent management will be motivated to do this out of trust in the security
administrator, the prospect of saving time, the reduction of expenses for
evaluation and study, and the contentment of knowing that the organization is
protected by generally used controls.
Baseline security will allow organizations to avoid unnecessary expenditure of
resources to engage in detailed study of already resolved problems and
selection of solutions by extensive justification efforts, data gathering, and
analysis. It will facilitate providing simple, inpexpensive, effective
safeguards comprehensively before difficult, new problems are attacked. As
computer-using orgainzations adopt the baseline approach for selection of
controls used most successfully by other organizations. This practice , they
will increasingly rely on the best security controls used most successfully by
other organizations. This practice will further advance the baseline concept
by encouraging uniformly high quality security. In addition, this will
stimulate and facilitate a formalized theory of computer security, putting it
on a par w/ other theories in computer technology. The training of computer
security specialists will likewise be formalized and advanced.
Identification of generally used controls and their variants will stabilize and
enlarge the security products market to stimulate a wider range of less
expensive control products that require few model types and options. for
example, when procedures are developed and accepted for cryptography use, then
cryptographic products will become more uniform and cost less.
FUTURE DEVELOPMENT OF BASELINE CONCEPTS
This report alone is not sufficient to assure the feasibility of baseline
concepts. The control objectives and controls identified from the seven field
site visits may form a baseline nucleus b/c they are explicitly documented as
currently in use in several computer centers, and representatives of all seven
sites agreed on their common usage. The literature abounds w/ descriptions of
controls, each usually recommended by one or two authors and not ncecessarily
supported by widespread use. The Systems Auditability and Control Reports from
the Institute of Internal Auditors identifies 300 controls and a set of control
objectives based on a survey of 1,500 computer-using enterprises. However, one
conclusion of these 1977 reports was a significant lack of common usage. Only
a few organizations were found to be using any particular control.
It is hoped that the baseline concepts will not be seen as alternatives to
quantitative and qualitative risk assessment methods now in use. Baseline
controls would be selected before such assessments take place so that the
obvious, accepted, routine controls could be applied before risk assessments
are used. Therefore, assessments can be started further along in the controls
selection process.
When protection from intentionally caused losses is of concern, a game
strategy must be used. The intelligent opponent will normally not attack
where effective controls are in place but will seek vulnerabilities resulting
from a lack of controls. In other words, losses will tend to occur where
victims have not thought to put controls. It must be assumed that an
intelligent opponent will know as much about published baselines as their
originators do and will take advantage of any deficiencies. Therefore, the
baseline concepts are esentially foreced on potential victims. These
vulnerable organizations must establish full baseline protection as routine,
prudent operation to be able to concerntrate on those vulnerabilities created
by the special circumstances and new environmental factors brought about by
use of new technology and new applications. After all, that is what
intelligent opponents will also be concentrating on after being rebuffed by
baseline controls.
The baseline concepts have a solubrious effect on errors and omissions; they
can mitigate unintentional threats. Unlike intentional acts, sources of errors
and omissions can only affect specific vulnerabilities. Therefore, an
escalated game strategy is not required. Prevention of accidental loss
results mostly from control of intentionally caused loss.
Formal bodies for identifying baseline controls might include the American
National Standards Institute, but based on its historical practice the
institute would probably standardize only a few of the most significant
controls such as cryptographic algorithms or uninterruptable power supplies.
The Generally Accepted Accounting Practices adopted by the American Institute
of Certified Public Accountants might be an interesting model to build on.
However, this would require a publicly and legally recognized professional body
in a narrowly defined, highly controlled (certified) practice. The computer
field is probably too highly diversified and changing to fast for the necessary
stability and consolidation of professionalism for a similar concept to work
for adoption of baselines in the near future.
The baseline concepts must therefore evolve slowly over a long period to
achieve a state close to general concurrence. Recognition of the baseline
concepts at this early stage should facilitate their development. It can be
argued that the number of generally used controls is insufficient to form good
baselines. However, the similarity of control needs has never been tested. In
fact, all current methods of selection of controls have been based on the
opposite assumption that every situation is unique. Assuming at least some
commonlity of needs and controls, a biginning based on potential benefits of
baseline concepts may produce sufficient results to counter such arguments.
The types of number of control objectives and controls in each category
described in this report will change as the computer security field matures,
new potential threats arise, and the technology changes. Control objectives
and controls will be moved from special to selective to baseline categories,
some controls will be dropped or replaced, and new controls will be developed.
Today, few control objectives and controls have been achieved explicit,
generally used, baseline status b/c the concept is new and differences rather
than similarities have been emphasized at computer centers. In the future,
baselines should grow and become more strongly accepted. Special controls
could decrease; many will become baseline controls as security needs become
more commonly known. This would occur as selection of controls becomes more
strongly based on what others are doing under similar circumstances.
Justification for recommendations will increasingly be based on the concept
that "we should do this, b/c company X is doining it"
[END OF SECTION IV COMPUTER SECURITY CONTROLS AND THE LAW]
==============================================================================
/ /
/ File 04 / NIA069 /
/ KERMIT PROTOCOL MANUAL /
/ Part 01 of 02 /
/ Fifth Edition /
/ /
/ Frank da Cruz /
/ /
/ Columbia University Center for Computing Activities /
/ New York, New York 10027 /
/ /
/ 3 April 1984 /
/ /
/ Submitted By: /
/ Malefactor Of Organized Crime /
/ Dedicated To: /
The Mentor
Copyright (C) 1981,1982,1983,1984
Trustees of Columbia University in the City of New York
Permission is granted to any individual or institution to copy or
use this document and the programs described in it, except for
explicitly commercial purposes.
Preface to the Fourth Edition Page 1
Preface to the Fourth Edition
The fourth edition (November 1983) of the KERMIT Protocol Manual incorporates
some new ideas that grew from our experience in attempting to implement some of
the features described in earlier editions, particularly user/server functions.
These include a mechanism to allow batch transfers to be interrupted gracefully
for either the current file or the entire batch of files; a "capability mask";
a protocol extension for passing file attributes. In addition, numbers are now
written in decimal notation rather than octal, which was confusing to many
readers. Also, several incompatible changes were made in minor areas where no
attempts at an implementation had yet been made; these include:
- The format and interpretation of the operands to the server commands.
- Usurpation of the reserved fields 10-11 of the Send-Init packet, and
addition of new reserved fields.
Most of the remaining material has been rewritten and reorganized, and much new
material added, including a section on the recommended vocabulary for documen-
tation and commands.
The previous edition of the Protocol Manual attempted to define "protocol ver-
sion 3"; this edition abandons that concept. Since KERMIT development is an
unorganized, disorderly, distributed enterprise, no requirement can be imposed
on KERMIT implementors to include a certain set of capabilities in their im-
plementations. Rather, in this edition we attempt to define the basic
functionality of KERMIT, and then describe various optional functions.
The key principle is that any implementation of KERMIT should work with any
other, no matter how advanced the one or how primitive the other. The capabily
mask and other Send-Init fields attempt to promote this principle.
FIFTH EDITION
The fifth edition (March 1984) attempts to clarify some fine points that had
been left ambiguous in the 4th edition, particularly with respect to when and
how prefix encoding is done, and when it is not, and about switching between
block check types. A mechanism is suggested (in the Attributes section) for
file archiving, and several attributes have been rearranged and some others ad-
ded (this should do no harm, since no one to date has attempted to implement
the attributes packet). A more complete protocol state table is provided, a
few minor additions are made to the collection of packet types.
A FEW WORDS...
Before deciding to write a new version of KERMIT, please bear in mind that the
philosophy of KERMIT has always been that is not, and never should become, a
commercial product, sold for profit. Its goal is to promote communication and
sharing, and KERMIT itself should be freely shared, and not sold. Media and
reproduction costs may be recouped if desired, but profit should not be the mo-
tive. Vendors of commercial software, however, may request permission to in-
clude KERMIT with, or in, their programs provided certain conditions are met,
including that credit for the protocol be given to Columbia and that the price
of the product not be raised substantially beyond media and reproduction costs
Preface to the Fourth Edition Page 2
for inclusion of KERMIT. Contact the KERMIT group at Columbia if you have any
questions about this. Prospective KERMIT implementors should check with us in
any case, to be sure that someone else has not already done, or started to do,
the same thing you propose to do.
KERMIT is distributed from Columbia University on magnetic tape. Complete or-
dering instructions can be found in the Kermit Users Guide. Direct inquiries
about KERMIT to:
KERMIT Distribution
Columbia University Center for Computing Activities
7th Floor, Watson Laboratory
612 West 115th Street
New York, NY 10025
ACKNOWLEDGEMENTS
Bill Catchings and I designed the basic KERMIT protocol at Columbia University
in 1981. For ideas, we looked at some of the ANSI models (X3.57, X3.66), the
ISO OSI model, some real-world "asynchronous protocols" (including the Stanford
Dialnet project, the University of Utah TTYFTP project), as well as at file
transfer on full-blown networks like DECnet and ARPAnet.
Bill wrote the first two programs to implement the protocol, one for the
DEC-20, one for a CP/M-80 microcomputer, and in the process worked out most of
the details and heuristics required for basic file transfer. Meanwhile, Daphne
Tzoar and Vace Kundakci, also of Columbia, worked out the additional details
necessary for IBM mainframe communication.
Much credit should also go to Bernie Eiben of Digital Equipment Corporation for
promoting widespread use of KERMIT and for adding many insights into how it
should operate, and to Nick Bush and Bob McQueen of Stevens Institute of Tech-
nology, for many contributions to the "advanced" parts of the protocol, and for
several major KERMIT implementations.
Thanks to the many people all over the world who have contributed new KERMIT
implementations, who have helped with KERMIT distribution through various user
groups, and who have contributed to the quality of the protocol and its many
implementations by reporting or fixing problems, criticizing the design, or
suggesting new features.
DISCLAIMER
No warranty of the software nor of the accuracy of the documentation surround-
ing it is expressed or implied, and neither the authors nor Columbia University
acknowledge any liability resulting from program or documentation errors.
Introduction Page 3
1. Introduction
This manual describes the KERMIT protocol. It is assumed that you understand
the purpose and operation of the Kermit file transfer facility, described in
the Kermit Users Guide, and basic terminology of data communications and com-
puter programming.
1.1. Background
The KERMIT file transfer protocol is intended for use in an environment where
there may be a diverse mixture of computers -- micros, personal computers,
workstations, laboratory computers, timesharing systems -- from a variety of
manufacturers. All these systems need have in common is the ability to com-
municate in ASCII over ordinary serial telecommunication lines.
KERMIT was originally designed at Columbia University to meet the need for file
transfer between our DECSYSTEM-20 and IBM 370-series mainframes and various
microcomputers. It turned out that the diverse characteristics of these three
kinds of systems resulted in a design that was general enough to fit almost any
system. The IBM mainframe, in particular, strains most common assumptions
about how computers communicate.
1.2. Overview
The KERMIT protocol is specifically designed for character-oriented transmis-
sion over serial telecommunication lines. The design allows for the restric-
tions and peculiarities of the medium and the requirements of diverse operating
environments -- buffering, duplex, parity, character set, file organization,
etc. The protocol is carried out by KERMIT programs on each end of the serial
connection sending "packets" back and forth; the sender sends file names, file
contents, and control information; the receiver acknowledges (positively or
negatively) each packet.
The packets have a layered design, more or less in keeping with the ANSI and
ISO philosophies, with the outermost fields used by the data link layer to
verify data integrity, the next by the session layer to verify continuity, and
the data itself at the application level.
Connections between systems are established by the ordinary user. In a typical
case, the user runs KERMIT on a microcomputer, enters terminal emulation, con-
nects to a remote host computer (perhaps by dialing up), logs in, runs KERMIT
on the remote host, and then issues commands to that KERMIT to start a file
transfer, "escapes" back to the micro, and issues commands to that KERMIT to
start its side of the file transfer. Files may be transferred singly or in
groups.
Basic KERMIT provides only file transfer, and that is provided for sequential
files only, though the protocol attempts to allow for various types of sequen-
tial files. Microcomputer implementations of KERMIT are also expected to
provide terminal emulation, to facilitate the initial connection.
More advanced implementations simplify the "user interface" somewhat by allow-
ing the KERMIT on the remote host to run as a "server", which can transfer
files in either direction upon command from the local "user" Kermit. The serv-
Introduction Page 4
er can also provide additional functionality, such as file management, mes-
sages, mail, and so forth. Other optional features also exist, including a
variety of block check types, a mechanism for passing 8-bit data through a
7-bit communication link, a way to compressing a repeated sequence of charac-
ters, and so forth.
As local area networks become more popular, inexpensive, and standardized, the
demand for KERMIT and similar protocols may dwindle, but will never wither away
entirely. Unlike hardwired networks, KERMIT gives the ordinary user the power
to establish reliable error-free connections between any two computers; this
may always be necessary for one-shot or long-haul connections.
Definitions Page 5
2. Definitions
2.1. General Terminology
TTY: This is the term commonly used for a device which is connected to a com-
puter over an EIA RS-232 serial telecommunication line. This device is most
commonly an ASCII terminal, but it may be a microcomputer or even a large
multi-user computer emulating an ASCII terminal. Most computers provide
hardware (RS-232 connectors and UARTs) and software (device drivers) to support
TTY connections; this is what makes TTY-oriented file transfer protocols like
KERMIT possible on almost any system at little or no cost.
LOCAL: When two machines are connected, the LOCAL machine is the one which you
interact with directly, and which is in control of the terminal. The "local
Kermit" is the one that runs on the local machine. A local Kermit always com-
municates over an external device (the micro's communication port, an assigned
TTY line, etc).
REMOTE: The REMOTE machine is the one on the far side of the connection, which
you must interact with "through" the local machine. The "remote Kermit" runs
on the remote machine. A remote Kermit usually communicates over its own
"console", "controlling terminal", or "standard i/o" device.
HOST: Another word for "computer", usually meaning a computer that can provide
a home for multiple users or applications. This term should be avoided in KER-
MIT lore, unless preceded immediately by LOCAL or REMOTE, to denote which host
is meant.
SERVER: An implementation of remote Kermit that can accept commands in packet
form from a local Kermit program, instead of directly from the user.
USER: In addition to its usual use to denote the person using a system or
program, "user" will also be used refer to the local Kermit program, when the
remote Kermit is a server.
2.2. Numbers
All numbers in the following text are expressed in decimal (base 10) notation
unless otherwise specified.
Numbers are also referred to in terms of their bit positions in a computer
word. Since KERMIT may be implemented on computers with various word sizes, we
start numbering the bits from the "right" -- bit 0 is the least significant.
Bits 0-5 are the 6 least significant bits; if they were all set to one, the
value would be 63.
A special quirk in terminology, however, refers to the high order bit of a
character as it is transmitted on the communication line, as the "8th bit".
More properly, it is bit 7, since we start counting from 0. References to the
"8th bit" generally are with regard to that bit which ASCII transmission sets
aside for use as a parity bit. KERMIT concerns itself with whether this bit
can be usurped for the transmission of data, and if not, it may resort to
"8th-bit prefixing".
Definitions Page 6
2.3. Character Set
All characters are in ASCII (American national Standard Code for Information
Interchange) representation, ANSI standard X3.4-1968. All implementations of
KERMIT transmit and receive characters only in ASCII. The ASCII character set
is listed in Appendix V.
ASCII character mnemonics:
NUL Null, idle, ASCII character 0.
SOH Start-of-header, ASCII character 1 (Control-A).
SP Space, blank, ASCII 32.
CR Carriage return, ASCII 13 (Control-M).
LF Linefeed, ASCII 10 (Control-J).
CRLF A carriage-return linefeed sequence.
DEL Delete, rubout, ASCII 127.
A control character is considered to be any byte whose low order 7 bits are in
the range 0 through 31, or equal to 127. In this document, control characters
are written in several ways:
Control-A
This denotes ASCII character 1, commonly referred to as "Control-A".
Control-B is ASCII character 2, and so forth.
CTRL-A This is a common abbreviation for "Control-A". A control character is
generally typed at a computer terminal by holding down the key marked
CTRL and pressing the corresponding alphabetic character, in this case
"A".
?A "Uparrow" notation for CTRL-A. Many computer systems "echo" control
characters in this fashion.
A printable ASCII character is considered to be any character in the range 32
(SP) through 126 (tilde).
2.4. Conversion Functions
Several conversion functions are useful in the description of the protocol and
in the program example. The machine that Kermit runs on need operate only on
integer data; these are functions that operate upon the numeric value of single
ASCII characters.
char(x) = x+32 Transforms the integer x, which is assumed to lie in the range
0 to 94, into a printable ASCII character; 0 becomes SP, 1 be-
comes "!", 3 becomes "#", etc.
unchar(x) = x-32
Transforms the character x, which is assumed to be in the
printable range (SP through tilde), into an integer in the
range 0 to 94.
ctl(x) = x XOR 64
Maps between control characters and their printable represen-
tations, preserving the high-order bit. If x is a control
Definitions Page 7
character, then
x = ctl(ctl(x))
that is, the same function is used to controllify and uncon-
trollify. The argument is assumed to be a true control charac-
ter (0 to 31, or 127), or the result of applying CTL to a true
control character (i.e. 63 to 95). The transformation is a
mnemonic one -- ?A becomes A and vice versa.
2.5. Protocol Jargon
A Packet is a clearly delimited string of characters, comprised of "control
fields" nested around data; the control fields allow a KERMIT program to deter-
mine whether the data has been transmitted correctly and completely. A packet
is the unit of transmission in the KERMIT protocol.
ACK stands for "Acknowledge". An ACK is a packet that is sent to acknowledge
receipt of another packet. Not to be confused with the ASCII character ACK.
NAK stands for "Negative Acknowledge". A NAK is a packet sent to say that a
corrupted or incomplete packet was received, the wrong packet was received, or
an expected packet was not received. Not to be confused with the ASCII charac-
ter NAK.
A timeout is an event that can occur if expected data does not arrive within a
specified amount of time. The program generating the input request can set a
"timer interrupt" to break it out of a nonresponsive read, so that recovery
procedures may be activated.
System Requirements Page 8
3. System Requirements
The KERMIT protocol requires that:
- The host can send and receive characters using 7- or 8-bit ASCII en-
coding over an EIA RS-232 physical connection, either hardwired or
dialup.
- All printable ASCII characters are acceptable as input to the host
1
and will not be transformed in any way . Similarly, any intervening
network or communications equipment ("smart modems", TELENET, ter-
minal concentrators, port selectors, etc) must not transform or swal-
low any printable ASCII characters.
- A single ASCII control character can pass from one system to the
other without transformation. This character is used for packet
synchronization. The character is normally Control-A (SOH, ASCII 1),
but can be redefined.
- If a host requires a line terminator for terminal input, that ter-
minator must be a single ASCII control character, such as CR or LF,
distinct from the packet synchronization character.
- When using a job's controlling terminal for file transfer, the system
must allow the KERMIT program to set the terminal to no echo, in-
finite width (no "wraparound" or CRLF insertion by the operating
system), and no "formatting" of incoming or outgoing characters (for
instance, raising lowercase letters to uppercase, transforming con-
trol characters to printable sequences, etc). In short, the terminal
must be put in "binary" or "raw" mode, and, hopefully, restored af-
terwards to normal operation.
- The host's terminal input processor should be capable of receiving a
single burst of 40 to 100 characters at normal transmission speeds.
This is the typical size of packet.
Note that most of these requirements rule out the use of KERMIT through IBM
3270 / ASCII protocol converters.
KERMIT does not require:
- That the connection run at any particular baud rate.
- That the system can do XON/XOFF or any other kind of flow control.
System- or hardware-level flow control can help, but it's not neces-
sary. See section 5.7.
- That the system is capable of full duplex operation. Any mixture of
_______________
1
If they are translated to another character set, like EBCDIC, the KERMIT
program must be able to reconstruct the packet as it appeared on the communica-
tion line, before transformation.
System Requirements Page 9
half and full duplex systems is supported.
- That the system can transmit or receive 8-bit bytes. KERMIT will
take advantage of 8-bit connections to send binary files; if an 8-bit
connection is not possible, then binary files may be sent using an
optional prefix encoding.
Printable Text versus Binary Data Page 10
4. Printable Text versus Binary Data
For transmission between unlike systems, files must be assigned to either of
two catagories: printable text or binary.
A printable text file is one that can make sense on an unlike system -- a docu-
ment, program source, textual data, etc. A binary file is one that will not
(and probably can not) make sense on an unlike system -- an executable program,
numbers stored in internal format, etc. On systems with 8-bit bytes, printable
2
ASCII files will have the high order bit of each byte set to zero (since ASCII
is a 7-bit code) whereas binary files will use the high order bit of each byte
for data, in which case its value can vary from byte to byte.
Many computers have no way to distinguish a printable file from a binary file
-- especially one originating from an unlike system -- so the user may have to
give an explicit command to Kermit to tell it whether to perform these conver-
sions.
4.1. Printable Text Files
A primary goal of KERMIT is for printable text files to be useful on the target
system after transfer. This requires a standard representation for text during
transmission. KERMIT's standard is simple: 7-bit ASCII characters, with
"logical records" (lines) delimited by CRLFs. It is the responsibility of sys-
tems that do not store printable files in this fashion to perform the necessary
conversions upon input and output. For instance, IBM mainframes might strip
trailing blanks on output and add them back on input; UNIX would prepend a CR
to its normal record terminator, LF, upon output and discard it upon input. In
addition, IBM mainframes must do EBCDIC/ASCII translation for text files.
No other conversions (e.g. tab expansion) are performed upon text files. This
representation is chosen because it corresponds to the way text files are
stored on most microcomputers and on many other systems. In many common cases,
no transformations are necessary at all.
4.2. Binary Files
Binary files are transmitted as though they were a sequence of characters. The
difference from printable files is that the status of the "8th bit" must be
preserved. When binary files are transmitted to an unlike system, the main ob-
jective is that they can be brought back to the original system (or one like
it) intact; no special conversions should be done during transmission, except
to make the data fit the transmission medium.
For binary files, eight bit character transmission is permissible as long as
the two Kermit programs involved can control the value of the parity bit, and
_______________
2
There are some exceptions, such as systems that store text files in so-
called "negative ASCII", or text files produced by word processors that use the
high order bit to indicate underline or boldface attributes.
Printable Text versus Binary Data Page 11
no intervening communications equipment will change its value. In that case,
the 8th bit of a transmitted character will match that of the original data
byte, after any control-prefixing has been done. When one or both sides cannot
control the parity bit, a special prefix character may be inserted, as
described below.
Systems that do not store binary data in 8-bit bytes, or whose word size is not
a multiple of 8, may make special provisions for "image mode" transfer of bi-
nary files. This may be done within the basic protocol by having the two sides
implicitly agree upon a scheme for packing the data into 7- or 8-bit ASCII
characters, or else the more flexible (but optional) file attributes feature
may be used. The former method is used on PDP-10 36-bit word machines, in
which text is stored five 7-bit bytes per word; the value of the "odd bit" is
sent as the parity bit of every 5th word.
File Transfer Page 12
5. File Transfer
The file transfer protocol takes place over a transaction. A transaction is an
exchange of packets beginning with a Send-Init (S) packet, and ending with a
3
Break Transmission (B) or Error (E) packet , and may include the transfer of
one or more files, all in the same direction. In order to minimize the unfor-
seen, KERMIT packets do not contain any control characters except one specially
designated to mark the beginning of a packet. Except for the packet marker,
only printable characters are transmitted. The following sequence charac-
terizes basic Kermit operation; the sender is the machine that is sending
files; the receiver is the machine receiving the files.
1. The sender transmits a Send-Initiate (S) packet to specify its
parameters (packet length, timeout, etc; these are explained below).
2. The receiver sends an ACK (Y) packet, with its own parameters in the
data field.
3. The sender transmits a File-Header (F) packet, which contains the
file's name in the data field. The receiver ACKs the F packet, with
no data in the data field of the ACK (optionally, it may contain the
name under which the receiver will store the file).
4. The sender sends the contents of the file, in Data (D) packets. Any
data not in the printable range is prefixed and replaced by a print-
able equivalent. Each D packet is acknowledged before the next one
is sent.
5. When all the file data has been sent, the sender sends an End-Of-
File (Z) packet. The receiver ACKs it.
6. If there is another file to send, the process is repeated beginning
at step 3.
7. When no more files remain to be sent, the sender transmits an End-
Of-Transmission (B) packet. The receiver ACKs it. This ends the
transaction, and closes the logical connection (the physical connec-
tion remains open).
Each packet has a sequence number, starting with 0 for the Send Init. The ack-
nowledgment (ACK or NAK) for a packet has the same packet number as the packet
being acknowledged. Once an acknowledgment is successfully received the packet
number is increased by one, modulo 64.
If the sender is remote, it waits for a certain amount of time (somewhere in
the 5-30 second range) before transmitting the Send-Init, to give the user time
to escape back to the local KERMIT and tell it to receive files.
_______________
3
A transaction should also be considered terminated when one side or the
other has stopped without sending an Error packet.
File Transfer Page 13
5.1. Conditioning the Terminal
KERMIT is most commonly run with the user sitting at a microcomputer, connected
through a communications port to a remote timesharing system. The remote KER-
MIT is using its job's own "controlling terminal" for file transfer. While the
microcomputer's port is an ordinary device, a timesharing job's controlling
terminal is a special one, and often performs many services that would inter-
fere with normal operation of KERMIT. Such services include echoing (on full
duplex systems), wrapping lines by inserting carriage return linefeed sequences
at the terminal width, pausing at the end of a screen or page full of text,
displaying system messages, alphabetic case conversion, control character in-
tepretation, and so forth. Mainframe KERMIT programs should be prepared to
disable as many of these services as possible before packet communication
begins, and to restore them to their original condition at the end of a trans-
action. Disabling these services is usually known as "putting the terminal in
binary mode."
KERMIT's use of printable control character equivalents, variable packet
lengths, redefinable markers and prefixes, and allowance for any characters at
all to appear between packets with no adverse effects provide a great deal of
adaptability for those systems that do not allow certain (or any) of these fea-
tures to be disabled.
5.2. Timeouts, NAKs, and Retries
If a KERMIT program is capable of setting a timer interrupt, or setting a time
limit on an input request, it should do so whenever attempting to read a packet
from the communication line, whether sending or receiving files. Having read a
packet, it should turn off the timer.
If the sender times out waiting for an acknowledgement, it should send the same
packet again, repeating the process a certain number of times up to a retry
limit, or until an acknowledgement is received. If the receiver times out
waiting for a packet, it can send either a NAK packet for the expected packet
or another ACK for the last packet it got.
If a packet from the sender is garbled or lost in transmission (the latter is
detected when the sequence number increases by more than 1, modulo 64, the
former by a bad checksum), the receiver sends a NAK for the garbled or missing
packet. If an ACK or a NAK from the receiver is garbled or lost, the sender
ignores it; in that case, one side or the other will time out and retransmit.
A retry count is maintained, and there is a retry threshold, normally set
around 5. Whenever a packet is resent -- because of a timeout, or because it
was NAK'd -- the counter is incremented. When it reaches the threshold, the
transaction is terminated and the counter reset.
If neither side is capable of timing out, a facility for manual intervention
must be available on the local KERMIT. Typically, this will work by sampling
the keyboard (console) periodically; if input, such as a CR, appears, then the
same action is taken as if a timeout had occurred. The local KERMIT keeps a
running display of the packet number or byte count on the screen to allow the
user to detect when traffic has stopped. At this point, manual intervention
should break the deadlock.
File Transfer Page 14
Shared systems which can become sluggish when heavily used should adjust their
own timeout intervals on a per-packet basis, based on the system load, so that
file transfers won't fail simply because the system was too slow.
Normally, only one side should be doing timeouts, preferably the side with the
greatest knowledge of the "environment" -- system load, baud rate, and so
forth, so as to optimally adjust the timeout interval for each packet. If both
sides are timing out, their intervals should differ sufficiently to prevent
collisions.
5.3. Errors
During file transfer, the sender may encounter an i/o error on the disk, or the
receiver may attempt to write to a full or write-protected device. Any con-
dition that will prevent successful transmission of the file is called a "fatal
error". Fatal errors should be detected, and the transfer shut down grace-
fully, with the pertinent information provided to the user. Error packets
provide a mechanism to do this.
If a fatal error takes place on either the sending or receiving side, the side
which encountered the error should send an Error (E) packet. The E packet con-
tains a brief textual error message in the data field. Both the sender and
receiver should be prepared to receive an Error packet at any time during the
transaction. Both the sender and receiver of the Error packet should halt, or
go back into into user command mode (a server should return to server command
wait). The side that is local should print the error message on the screen.
There is no provision for sending nonfatal error messages, warnings, or infor-
mation messages during a transaction. It would be possible to add such a fea-
ture, but this would require both sides agree to use it through setting of a
bit in the capability mask, since older KERMITs that did not know about such a
feature would encounter an unexpected packet type and would enter the fatal er-
ror state. In any case, the utility of such a feature is questionable, since
there is no guarantee that the user will be present to see such messages at the
time they are sent; even if they are saved up for later perusal in a "message
box", their significance may be long past by the time the user reads them. See
the section on Robustness, below.
5.4. Heuristics
During any transaction, several heuristics are useful:
1. A NAK for the current packet is equivalent to an ACK for the pre-
vious packet (modulo 64). This handles the common situation in
which a packet is successfully received, and then ACK'd, but the ACK
is lost. The ACKing side then times out waiting for the next packet
and NAKs it. The side that receives a NAK for packet n+1 while
waiting for an ACK for packet n simply sends packet n+1.
2. If packet n arrives more than once, simply ACK it and discard it.
This can happen when the first ACK was lost. Resending the ACK is
necessary and sufficient -- don't write the packet out to the file
again!
File Transfer Page 15
3. When opening a connection, discard the contents of the line's input
buffer before reading or sending the first packet. This is espe-
cially important if the other side is in receive mode (or acting as
a server), in which case it may have been sending out periodic NAKs
for your expected SEND-INIT or command packet. If you don't do
this, you may find that there are sufficient NAKs to prevent the
transfer -- you send a Send-Init, read the response, which is an old
NAK, so you send another Send-Init, read the next old NAK, and so
forth, up to the retransmission limit, and give up before getting to
the ACKs that are waiting in line behind all the old NAKs. If the
number of NAKs is below the cutoff, then each packet may be trans-
mitted multiply.
4. Similarly, before sending a packet, you should clear the input buff-
er (after looking for any required handshake character). Failure to
clear the buffer could result in propogation of the repetition of a
packet caused by stacked-up NAKs.
5.5. File Names
The syntax for file names can vary widely from system to system. To avoid
problems, it is suggested that filenames be represented in the File Header (F)
packet in a "normal form", by default (that is, there should be an option to
override such conversions).
1. Delete all pathnames and attributes from the file specification.
The file header packet should not contain directory or device names;
if it does, it may cause the recipient to try to store the file in
an inaccessible or nonexistent area, or it may result in a very
strange filename.
2. After stripping any pathname, convert the remainder of the file
specification to the form "name.type", with no restriction on length
(except that it fit in the data field of the F packet), and:
a. Include no more than one dot.
b. Use digits, uppercase letters only in name and type.
Special characters like "$", "_", "-", "&", and so forth should be disallowed,
since they're sure to cause problems on one system or another.
The recipient, of course, cannot depend upon the sender to follow this conven-
tion, and should still take precautions. However, since most file systems em-
body the notion of a file name and a file type, this convention will allow
these items to be expressed in a way that an unlike system can understand. The
particular notation is chosen simply because it is the most common.
The recipient must worry about the length of the name and type fields of the
file name. If either is too long, they must be truncated. If the result
(whether truncated or not) is the same as the name of a file that already ex-
ists in the same area, the recipient should have the ability to take some spe-
cial action to avoid writing over the original file.
KERMIT implementations that convert file specifications to normal form by
default should have an option to override this feature. This would be most
File Transfer Page 16
useful when transferring files between like systems, perhaps used in conjunc-
tion with "image mode" file transfer. This could allow, for instance, one UNIX
system to send an entire directory tree to another UNIX system.
5.6. Robustness
A major feature of the KERMIT protocol is the ability to transfer multiple
files. Whether a particular KERMIT program can actually send multiple files
depends on the capabilities of the program and the host operating system (any
KERMIT program can receive multiple files).
If a KERMIT program can send multiple files, it should make every attempt to
send the entire group specified. If it fails to send a particular file, it
should not terminate the entire batch, but should go on the the next one, and
proceed until an attempt has been made to send each file in the group.
Operating in this robust manner, however, gives rise to a problem: the user
must be notified of a failure to send any particular file. Unfortunately, it
is not sufficient to print a message to the screen since the user may not be
physically present. A better solution would be to have the sender optionally
keep a log of the transaction, giving the name of each file for which an at-
tempt was made, and stating whether the attempt was successful, and if not, the
reason. Additional aids to robustness are described in the Optional Features
section, below.
5.7. Flow Control
On full duplex connections, XON/XOFF flow control can generally be used in con-
junction with KERMIT file transfer with no ill effects. This is because XOFFs
are sent in the opposite direction of packet flow, so they will not interfere
with the packets themselves. XON/XOFF, therefore, need not be implemented by
the KERMIT program, but can done by the host system. If the host system
provides this capability, it should be used -- if both sides can respond
XON/XOFF signals, then buffer overruns and the resulting costly packet
retransmissions can be avoided.
Beware, however, of the following situation: remote Kermit is sending periodic
NAKs, local system is buffering them on the operating system level (because the
user has not started the local end of the file transfer yet); local line buffer
becomes full, local systems sends XOFF, remote starts buffering them up on its
end, user finally starts file transfer on local end, clears buffer, local
operating system sends XON, and then all the remotely buffered NAKs show up,
causing the packet echoing problem described above, despite the buffer clear-
ing.
Flow control via modem signals can also be used when available.
Note that flow control should not be confused with "handshake" or "line
turnaround" techniques that are used on simplex or half-duplex communication
lines.
File Transfer Page 17
5.8. Basic KERMIT Protocol State Table
The KERMIT protocol can be described as a set of states and transitions, and
rules for what to do when changing from one state to another. State changes
occur based on the type of packets that are sent or received, or errors that
may occur. Packets always go back and forth; the sender of a file always sends
data packets of some kind (init, header, data) and the receiver always returns
ACK or NAK packets.
Upon entering a given state, a certain kind of packet is either being sent or
is expected to arrive -- this is shown on top of the description of that state.
As a result of the action, various responses may occur; these are shown in the
EVENT column. For each event, an appropriate ACTION is taken, and the protocol
enters a NEW STATE.
The following table specifies basic KERMIT operation. Timeouts and error con-
ditions have been omitted from the following table for simplicity, but the ac-
tion is as described above. Server operation and some of the advanced features
are also omitted. A full-blown state table is given subsequently.
File Transfer Page 18
STATE EVENT ACTION NEW STATE
-- SEND STATES --
Send Send-Init Packet
S Get NAK,bad ACK (None) S
Get good ACK Set remote's params, open file SF
(Other) (None) A
Send File-Header Packet
SF Get NAK,bad ACK (None) SF
Get good ACK Get bufferful of file data SD
(Other) (None) A
Send File-Data Packet
SD Get NAK,bad ACK (None) SD
Get good ACK Get bufferful of file data SD
(End of file) (None) SZ
(Other) (None) A
Send EOF Packet
SZ Get NAK,bad ACK (None) SZ
Get good ACK Get next file to send SF
(No more files) (None) SB
(Other) (None) A
Send Break (EOT) Packet
SB Get NAK,bad ACK (None) SB
Get good ACK (None) C
(Other) (None) A
-- RECEIVE STATES --
Wait for Send-Init Packet
R Get Send-Init ACK w/local params RF
(Other) (None) A
Wait for File-Header Packet
RF Get Send-Init ACK w/local params
(previous ACK was lost) RF
Get Send-EOF ACK (prev ACK lost) RF
Get Break ACK C
Get File-Header Open file, ACK RD
(Other) (None) A
Wait for File-Data Packet
RD Get previous
packet(D,F) ACK it again RD
Get EOF ACK it, close the file RF
Get good data Write to file, ACK RD
(Other) (None) A
File Transfer Page 19
-- STATES COMMON TO SENDING AND RECEIVING --
C (Send Complete) start
A ("Abort") start
Packet Format Page 20
6. Packet Format
6.1. Fields
The KERMIT protocol is built around exchange of packets of the following for-
mat:
+------+-----------+-----------+------+------------+-------+
| MARK | char(LEN) | char(SEQ) | TYPE | DATA | CHECK |
+------+-----------+-----------+------+------------+-------+
where all fields consist of ASCII characters. The fields are:
MARK The synchronization character that marks the beginning of the packet.
This should normally be CTRL-A, but may be redefined.
LEN The number of ASCII characters within the packet that follow this
field, in other words the packet length minus two. Since this number
is transformed to a single character via the char() function, packet
character counts of 0 to 94 (decimal) are permitted, and 96 (decimal)
is the maximum total packet length. The length does not include end-
of-line or padding characters, which are outside the packet and are
strictly for the benefit of the operating system or communications
equipment, but it does include the block check characters.
SEQ The packet sequence number, modulo 64, ranging from 0 to 63. Sequence
numbers "wrap around" to 0 after each group of 64 packets.
TYPE The packet type, a single ASCII character. The following packet types
are required:
D Data packet
Y Acknowledge (ACK)
N Negative acknowledge (NAK)
S Send initiate (exchange parameters)
B Break transmission (EOT)
F File header
Z End of file (EOF)
E Error
T Reserved for internal use
The NAK packet is used only to indicate that the expected packet was
not received correctly, never to supply other kinds of information,
such as refusal to perform a requested service. The NAK packet always
has an empty data field. The T "packet" is used internally by many
KERMIT programs to indicate that a timeout occurred.
DATA The "contents" of the packet, if any contents are required in the given
type of packet, interpreted according to the packet type. Control
characters (bytes whose low order 7 bits are in the ASCII control range
0-31, or 127) are preceded by a special prefix character, normally "#",
and "uncontrollified" via ctl(). A prefixed sequence may not be broken
across packets. Logical records in printable files are delimited with
CRLFs, suitably prefixed (e.g. "#M#J"). Logical records need not cor-
respond to packets. Any prefix characters are included in the count.
Packet Format Page 21
Optional encoding for 8-bit data and repeated characters is described
later.
CHECK A block check on the characters in the packet between, but not includ-
ing, the mark and the block check itself. The check for each packet is
computed by both hosts, and must agree if a packet is to be accepted.
A single-character arithmetic checksum is the normal and required block
check. Only six bits of the arithmetic sum are included. In order
that all the bits of each data character contribute to this quantity,
bits 6 and 7 of the final value are added to the quantity formed by
bits 0-5. Thus if s is the arithmetic sum of the ASCII characters,
then
check = char((s + ((s AND 192)/64)) AND 63)
This is the default block check, and all Kermits must be capable of
performing it. Other optional block check types are described later.
The block check is based on the ASCII values of all the characters in
the packet, including control fields and prefix characters. Non-ASCII
systems must translate to ASCII before performing the block check cal-
culation.
6.2. Terminator
Any line terminator that is required by the system may be appended to the
packet; this is carriage return (ASCII 15) by default. Line terminators are
not considered part of the packet, and are included for in the count or check-
sum. Terminators are not necessary to the protocol, and are invisible to it,
as are any characters that may appear between packets. If a host cannot do
single character input from a TTY line, then a terminator will be required when
sending to that host. The terminator can be specified in the initial connec-
tion exchange.
Some KERMIT implementations also use the terminator for another reason
-- speed. Some systems are not fast enough to take in a packet and decode it
character by character at high baud rates; by blindly reading and storing all
characters between the MARK and the EOL, they are able to absorb the incoming
characters at full speed and then process them at their own rate.
6.3. Other Interpacket Data
The space between packets may be used for any desired purpose. Handshaking
characters may be necessary on certain connections, others may require screen
control or other sequences to keep the packets flowing.
Packet Format Page 22
6.4. Encoding, Prefixing, Block Check
MARK, LEN, SEQ, TYPE, and CHECK are control fields. Control fields are always
literal single-character fields, except that the CHECK field may be extended by
one or two additional check characters. Each control field is encoded by
char() or taken literally, but never prefixed. The control fields never con-
tain 8-bit data.
The DATA field contains a string of data characters in which any control
characters are encoded printably and preceded with the control prefix. The
decision to prefix a character in this way depends upon whether its low order 7
bits are in the ASCII control range, i.e. 0-31 or 127. Prefix characters that
appear in the data must themselves be prefixed by the control prefix, but un-
like control characters, these retain their literal value in the packet.
The treatment of the high order ("8th") bit of a data byte is as follows:
- If the communication channel allows 8 data bits per character, then
the original value of the 8th bit is retained in the prefixed charac-
ter. For instance, a data byte corresponding to a Control-A with the
8th bit set would be send as a control prefix, normally "#", without
the 8th bit set, followed by ctl(?A) with the 8th bit set. In binary
notation, this would be
00100011 10000001
In this case, the 8th bit is figured into all block check calcula-
tions.
- If the communication channel or one of the hosts required parity on
each character, and both sides were capable of 8th-bit prefixing,
then the 8th bit will be used for parity, and must not be included in
the block check. 8th bit prefixing is an option feature described in
greater detail in Section 8, below.
- If parity is being used but 8th-bit prefixing is not being done, then
the value of the 8th bit of each data byte will be lost and binary
files will not be transmitted correctly. Again, the 8th bit does not
figure into the block check.
The data fields of all packets are subject to prefix encoding, except S, I, and
A packets, and their ACKs (see below).
Initial Connection Page 23
7. Initial Connection
Initial connection occurs when the user has started up a Kermit program on both
ends of the physical connection. One Kermit has been directed (in one way or
another) to send a file, and the other to receive it.
The receiving Kermit waits for a "Send-Init" packet from the sending Kermit.
It doesn't matter whether the sending Kermit is started before or after the
receiving Kermit (if before, the Send-Init packet should be retransmitted
periodically until the receiving Kermit acknowledges it). The data field of
the Send-Init packet is optional; trailing fields can be omitted (or left
blank, i.e. contain a space) to accept or specify default values.
The Send-Init packet contains a string of configuration information in its data
field. The receiver sends an ACK for the Send-Init, whose data field contains
its own configuration parameters. The data field of the Send-Init and the ACK
to the Send-Init are literal, that is, there is no prefix encoding. This is
because the two parties will not know how to do prefix encoding until after the
configuration data is exchanged.
It is important to note that newly invented fields are added at the right, so
that old KERMIT programs that do not have code to handle the new fields will
act as if they were not there. For this reason, the default value for any
field, indicated by blank, should result in the behavior that occurred before
the new field was defined or added.
1 2 3 4 5 6 7 8 9 10...
+------+------+------+------+------+------+------+------+------+-------
| MAXL | TIME | NPAD | PADC | EOL | QCTL | QBIN | CHKT | REPT | CAPAS
+------+------+------+------+------+------+------+------+------+-------
The fields are as follows (the first and second person "I" and "you" are used
to distinguish the two sides). Fields are encoded printably using the char()
function unless indicated otherwise.
1. MAXL The maximum length packet I want to receive, a number up to 94
(decimal). You respond with the maximum you want me to send. This
allows systems to adjust to each other's buffer sizes, or to the con-
dition of the transmission medium.
2. TIME The number of seconds after which I want you to time me out while
waiting for a packet from me. You respond with the amount of time I
should wait for packets from you. This allows the two sides to ac-
commodate to different line speeds or other factors that could cause
timing problems. Only one side needs to time out. If both sides
time out, then the timeout intervals should not be close together.
3. NPAD The number of padding characters I want to precede each incoming
packet; you respond in kind. Padding may be necessary when sending
to a half duplex system that requires some time to change the direc-
tion of transmission, although in practice this situation is more
commonly handled by a "handshake" mechanism.
4. PADC The control character I need for padding, if any, transformed by
ctl() (not char()) to make it printable. You respond in kind. Nor-
mally NUL (ASCII 0), some systems use DEL (ASCII 127). This field is
Initial Connection Page 24
to be ignored if the value NPAD is zero.
5. EOL The character I need to terminate an incoming packet, if any. You
respond in kind. Most systems that require a line terminator for
terminal input accept carriage return for this purpose (note, because
there is no way to specify that no EOL should be sent, it would have
been better to use ctl() for this field rather than char(), but it's
too late now).
6. QCTL (verbatim) The printable ASCII character I will use to quote control
characters, normally and by default "#". You respond with the one
you will use.
The following fields relate to the use of OPTIONAL features of the KERMIT
protocol, described in section 8.
7. QBIN (verbatim) The printable ASCII character I want to use to quote
characters which have the 8th bit set, for transmitting binary files
when the parity bit cannot be used for data. Since this kind of
quoting increases both processor and transmission overhead, it is
normally to be avoided. If used, the quote character must be in the
range ASCII 33-62 ("!" through ">") or 96-126 ("`" through "~"), but
different from the control-quoting character. This field is inter-
preted as follows:
Y I agree to 8-bit quoting if you request it.
N I will not do 8-bit quoting.
& (or any other character in the range 33-62 or 96-126) I want to
do 8-bit quoting using this character (it will be done if the
other Kermit puts a Y in this field, or responds with the same
prefix character, such as &). The recommended 8th-bit quoting
prefix character is "&".
Anything Else : 8-bit quoting will not be done.
Note that this scheme allows either side to initiate the request, and
the order does not matter. For instance, a micro capable of 8-bit
communication will normally put a "Y" in this field whereas a
mainframe that uses parity will always put an "&". No matter who
sends first, this combination will result in election of 8th-bit
quoting.
8. CHKT Check Type, the method for detecting errors. "1" for single-charac-
ter checksum (the normal and required method), "2" for two-character
checksum (optional), "3" for three-character CRC-CCITT (optional).
If your response agrees, the designated method will be used; other-
wise the single-character checksum will be used.
9. REPT The prefix character I will use to indicate a repeated character.
This can be any printable character in the range ASCII 33-62 or
96-126, but different from the control and 8th-bit prefixes. SP (32)
denotes no repeat count processing is to be done. Tilde ("~") is the
recommended and normal repeat prefix. If you don't respond iden-
tically, repeat counts will not be done. Groups of at least 3 or 4
identical characters may be transmitted more efficiently using a
repeat count, though an individual implementation may wish to set a
different threshhold.
Initial Connection Page 25
10-?. CAPAS
A bit mask, in which each bit position corresponds to a capability of
KERMIT, and is set to 1 if that capability is present, or 0 if it is
not. Each character contains a 6-bit field (transformed by CHAR()),
whose low order bit is set to 1 if another capability byte follows,
and to 0 in the last capability byte. The capabilities defined so
far are:
#1 Reserved
#2 Reserved
#3 Ability to accept "A" packets (file attributes)
The capability byte as defined so far would then look like:
bit5 bit4 bit3 bit2 bit1 bit0
+----+----+----+----+----+----+
| #1 | #2 | #3 | -- | -- | 0 |
+----+----+----+----+----+----+
If all these capabilities were "on", the value of the byte would be
70 (octal). When capabilities 4, 5 and 6 are added, the capability
mask will look like this:
bit5 bit4 bit3 bit2 bit1 bit0 bit5 bit4 bit3 bit2 bit1 bit0
+----+----+----+----+----+----+ +----+----+----+----+----+----+
| #1 | #2 | #3 | #4 | #5 | 1 | | #6 | -- | -- | -- | -- | 0 |
+----+----+----+----+----+----+ +----+----+----+----+----+----+
Next 4: Reserved Fields
Sites that wish to add their own parameters to the initial connection
negotiation must start at the 5th field after the last capability
byte. Any intervening fields may be left blank (that is, they may
contain the space character). These fields are reserved for future
use by the standard KERMIT protocol.
The control, 8th-bit, and repeat prefixes must be distinct.
The receiving Kermit responds with an ACK ("Y") packet in the same format to
indicate its own preferences, options, and parameters. The ACK need not con-
tain the same number of fields as the the Send-Init. From that point, the two
KERMIT programs are "configured" to communicate with each other for the
remainder of the transaction. In the case of 8th-bit quoting, one side must
specify the character to be used, and the other must agree with a "Y" in the
same field, but the order in which this occurs does not matter. Similarly for
checksums -- if one side requests 2 character checksums and the other side
responds with a "1" or with nothing at all, then single-character checksums
will be done, since not all implementations can be expected to do 2-character
checksums or CRCs. And for repeat counts; if the repeat field of the send-init
and the ACK do not agree, repeat processing will not be done.
All Send-Init fields are optional. The data field may be left totally empty.
Similarly, intervening fields may be defaulted by setting them to blank. Ker-
mit implementations should know what to do in these cases, namely apply ap-
propriate defaults. The defaults should be:
MAXL: 80
Initial Connection Page 26
NPAD: 0, no padding
PADC: 0 (NUL)
EOL: CR (carriage return)
QCTL: the character "#"
QBIN: none, don't do 8-bit quoting
CHKT: "1", single-character checksum
REPT: No repeat count processing
MASK: All zeros (no special capabilities)
There are no prolonged negotiations in the initial connection sequence -- there
is one Send-Init and one ACK in reply. Everything must be settled in this ex-
change.
The very first Send-Init may not get through if the sending Kermit makes wrong
assumptions about the receiving host. For instance, the receiving host may re-
quire certain parity, some padding, handshaking, or a special end of line
character in order to read the Send-Init packet. For this reason, there should
be a way for the user the user to specify whatever may be necessary to get the
first packet through.
A parity field is not provided in the Send-Init packet because it could not be
of use. If the sender requires a certain kind of parity, it will also be send-
ing it. If the receiver does not know this in advance, i.e. before getting the
Send-Init, it will not be able to read the Send-Init packet.
Optional Features Page 27
8. Optional Features
The foregoing sections have discussed basic, required operations for any KERMIT
implementation. The following sections discuss optional and advanced features.
8.1. 8th-Bit and Repeat Count Prefixing
Prefix quoting of control characters is mandatory. In addition, prefixing may
also be used for 8-bit quantities or repeat counts, when both KERMIT programs
agree to do so. 8th-bit prefixing can allow 8-bit binary data pass through
7-bit physical links. Repeat count prefixing can improve the throughput of
certain kinds of files dramatically; binary files (particularly executable
programs) and structured text (highly indented or columnar text) tend to be the
major beneficiaries.
When more than one type of prefixing is in effect, a single data character can
be preceded by more than one prefix character. Repeat count processing can
only be requested by the sender, and will only be used by the sender if the
receiver agrees. 8th-bit prefixing is a special case because its use is nor-
mally not desirable, since it increases both processing and transmission over-
head. However, since it is the only straightforward mechanism for binary file
transfer available to those systems that usurp the parity bit, a receiver must
be able to request the sender to do 8th-bit quoting, since most senders will
not normally do it by default.
The repeat prefix is followed immediately by a single-character repeat count,
encoded printably via char(), followed by the character itself (perhaps
prefixed by control or 8th bit quotes, as explained below). The repeat count
may express values from 0 to 94. If a character appears more than 94 times in
a row, it must be "cut off" at 94, emitted with all appropriate prefixes, and
"restarted". The following table should clarify Kermit's quoting mechanism
(the final line shows how a sequence of 120 consecutive NULs would be encoded):
Quoted With
Character Representation Repeat Count for 6
A A ~(A ["(" is ASCII 40 - 32 = 6]
?A #A ~(#A
'A &A ~(&A
'?A &#A ~(&#A
# ## ~(##
'# &## ~(&##
& #& ~(#&
'& &#& ~(&#&
~ #~ ~(#~
'~ &#~ ~(&#~
NUL #@ ~~#@~:#@ [120 NULs]
A represents any printable character, ?A represents any control character, 'x
represents any character with the 8th bit set. The # character is used for
control-character quoting, and the & character for 8-bit quoting. The repeat
count must always precede any other prefix character. The repeat count is
taken literally (after transformation by unchar(); for instance "#" and "&" im-
mediately following a "~" denote repeat counts, not control characters or 8-bit
characters. The control quote character "#" is most closely bound to the data
character, then the 8-bit prefix, then the repeat count; in other words, the
Optional Features Page 28
order is: repeat prefix and count, 8-bit quote, control quote, and the data
character itself. To illustrate, note that &#A is not equivalent to #&A.
When the parity bit is available for data, then 8th-bit quoting should not be
done, and the 8th bit of the prefixed character will have the same value as the
8th bit of the original data byte. In that case, the table looks like this:
Quoted With
Character Representation Repeat Count for 6
'A 'A ~('A
'?A #'A ~(#'A
'# #'# ~(#'#
'& '& ~('&
'~ #'~ ~(#'~
Note that since 8th bit quoting is not being done, "&" is not being used as an
8th bit prefix character, so it does not need to be quoted with "#". Also,
note that the 8th bit is set on the final argument of the repeat sequence, no
matter how long, and not on any of the prefix characters.
Finally, remember the following rules:
- Prefixed sequences must not be broken across packets.
- Control, 8th-bit, and repeat count prefixes must be distinct.
- Data fields of all packets must pass through the prefix encoding
mechanism, except for S, I, and A packets, and ACKs to those packets.
In the first rule above, note that a prefixed sequence means a single character
and all its prefixes, like ~%&#X, not a sequence like #M#J, which is two
prefixed sequences.
8.2. Server Operation
A KERMIT server is a KERMIT program running remotely with no "user interface".
All commands to the server arrive in packets from the local KERMIT. SERVER
operation is much more convenient than basic operation, since the user need
never again interact directly with the remote KERMIT program after once start-
ing it up in server mode, and therefore need not issue complementary SEND and
RECEIVE commands on the two sides to get a file transfer started; rather, a
single command (such as SEND or GET) to the local KERMIT suffices. KERMIT ser-
vers can also provide services beyond file transfer.
Between transactions, a Kermit server waits for packets containing server com-
mands. The packet sequence number is always set back to 0 after a transaction.
A Kermit server in command wait should be looking for packet 0, and command
packets sent to servers should also be packet 0. Certain server commands will
result in the exchange of multiple packets. Those operations proceed exactly
like file transfer.
A KERMIT server program waiting for a command packet is said to be in "server
command wait". Once put into server command wait, the server should never
leave it until it gets a command packet telling it to do so. This means that
after any transaction is terminated, either normally or by any kind of error,
Optional Features Page 29
the server must go back into command wait. While in command wait, a server may
elect to send out periodic NAKs for packet 0, the expected command packet.
Since the user may be disconnected from the server for long periods of time
(hours), the interval between these NAKs should be significantly longer than
the normal timeout interval (say, 30-60 seconds, rather than 5-10). The peri-
odic NAKs are useful for breaking the deadlock that would occur if a local
program was unable to time out, and sent a command that was lost. On the other
hand, they can cause problems for local KERMIT programs that cannot clear their
input buffers, or for systems that do XON/XOFF blindly, causing the NAKs to
buffered in the server's host system output buffer, to be suddenly released en
masse when an XON appears. For this reason, servers should have an option to
set the command-wait wakeup interval, or to disable it altogher.
Server operation must be implemented in two places: in the server itself, and
in any KERMIT program that will be communicating with a server. The server
must have code to read the server commands from packets and respond to them.
The user KERMIT must have code to parse the user's server-related commands, to
form the server command packets, and to handle the responses to those server
commands.
8.2.1. Server Commands
Server commands are listed below. Not all of them have been implemented, and
some may never be, but their use should be reserved. Although server-mode
operation is optional, certain commands should be implemented in every server.
These include Send-Init (S), Receive-Init (R), and the Generic Logout (GL)
and/or Finish (GF) commands. If the server receives a command it does not un-
derstand, or cannot execute, it should respond with an Error (E) packet con-
taining a message like "Unimplemented Server Command" and both sides should set
the packet sequence number back to 0, and the server should remain in server
command wait. Only a GL or GF command should terminate server operation.
Server commands are as follows:
S Send Initiate (exchange parameters, server waits for a file).
R Receive Initiate (ask the server to send the specified files).
I Initialize (exchange parameters).
X Text header. Allows transfer of text to the user's screen in response to a
generic or host command. This works just like file transfer except that
the destination "device" is the screen rather than a file. Data field may
contain a filename, title, or other heading.
C Host Command. The data field contains a string to be executed as a command
by the host system command processor.
K KERMIT Command. The data field contains a string in the interactive com-
mand language of the KERMIT server (normally a SET command) to be executed
as if it were typed in at command level.
G Generic Kermit Command. Single character in data field (possibly followed
by operands, shown in {braces}, optional fields in [brackets]) specifies
the command:
I Login [{*user[*password[*account]]}]
C CWD, Change Working Directory [{*directory[*password]}]
L Logout, Bye
F Finish (Shut down the server, but don't logout).
D Directory [{*filespec}]
Optional Features Page 30
U Disk Usage Query [{*area}]
E Erase (delete) {*filespec}
T Type {*filespec}
R Rename {*oldname*newname}
K Copy {*source*destination}
W Who's logged in? (Finger) [{*user ID or network host[*options]}]
M Send a short Message {*destination*text}
H Help [{*topic}]
Q Server Status Query
P Program {*[program-filespec][*program-commands]}
J Journal {*command[*argument]}
V Variable {*command[*argument[*argument]]}
Note that field length encoding is used within the data field of all
Generic command packets, but not within the data fields of the other pack-
ets, such as S, I, R, X, K, and C.
Asterisk as used above ("*") represents a single-character length field, en-
coded using char(), for the operand that follows it; thus lengths from 0 to 94
may be specified. This allows multiple operands to be clearly delimited
regardless of their contents.
All server commands that send arguments in their data fields should pass
through the prefix encoding mechanism. Thus if a data character or length
field happens to correspond to an active prefix character, it must itself be
prefixed. The field length denotes the length of the field before prefix en-
coding and (hopefully) after prefix decoding. For example, to send a generic
command with two fields, "ABC" and "ZZZZZZZZ", first each field would be
prefixed by char() of its length, in this case char(3) and char(8), giving
"#ABC(ZZZZZZZZ". But "#" is the normal control prefix character so it must be
prefixed itself, and the eight Z's can be condensed to 3 characters using a
repeat prefix (if repeat counts are in effect), so the result after encoding
would be "##ABC(~(Z" (assuming the repeat prefix is tilde ("~"). The recipient
would decode this back into the original "#ABC(ZZZZZZZZ" before attempting to
extract the two fields.
Since a generic command must fit into a single packet, the program sending the
command should ensure that the command actually fits, and should not include
length fields that point beyond the end of the packet. Servers, however,
should be defensive and not attempt to process any characters beyond the end of
the data field, even if the argument length field would lead them to do so.
8.2.2. Timing
KERMIT does not provide a mechanism for suspending and continuing a trans-
action. This means that text sent to the user's screen should not be frozen
for long periods (i.e. not longer than the timeout period times the retry
threshold).
Between transactions, when the server has no tasks pending, it may send out
periodic NAKs (always with type 1 checksums) to prevent a deadlock in case a
command was sent to it but was lost. These NAKs can pile up in the local
"user" Kermit's input buffer (if it has one), so the user Kermit should be
prepared to clear its input buffer before sending a command to a server.
Meanwhile, servers should recognize that some systems provide no function to do
Optional Features Page 31
this (or even when they do, the process can be foiled by system flow control
firmware) and should therefore provide a way turn off or slow down the command-
wait NAKs.
8.2.3. The R Command
The R packet, generally sent by a local Kermit program whose user typed a GET
command, tells the server to send the files specified by the name in the data
field of the R packet. Since we can't assume that the two Kermits are running
on like systems, the local (user) Kermit must parse the file specification as a
character string and let the server to check it. If the server can open and
read the specified file, it sends a Send-Init (S) packet -- not an acknowledge-
ment! -- to the user, and then completes the file-sending transaction, as
described above.
If the server cannot send the file, it should respond with an error (E) packet
containing a reason, like "File not found" or "Read access required".
8.2.4. The K Command
The K packet can contain a character string which the server interprets as a
command in its own interactive command language. This facility is useful for
achieving the same effect as a direct command without having to shut down the
server, connect back to the remote system, continue it (or start a new one),
and issue the desired commands. The server responds with an ACK if the command
was executed successfully, or an error packet otherwise. The most likely use
for the K packet might be for transmitting SET commands, e.g. for switching be-
tween text and binary file modes.
8.2.5. Short and Long Replies
Any request made of a server may be answered in either of two ways, and any
User Kermit that makes such a request should be prepared for either kind of
reply:
- A short reply. This consists of a single ACK packet, which may con-
tain text in its data field. For instance, the user might send a
disk space query to the server, and the server might ACK the request
with a short character string in the data field, such as "12K bytes
free". The user KERMIT should display this text on the screen.
- A long reply. This proceeds exactly like a file transfer (and in
some cases it may be a file transfer). It begins with one of the
following:
* A File-Header (F) packet (optionally followed by one or more At-
tributes packets; these are discussed later);
* A Text-Header (X) packet.
* A Send-Init (S) Packet, followed by an X or F packet.
After the X or F packet comes an arbitrary number of Data (D) pack-
Optional Features Page 32
ets, then an End-Of-File (Z) packet, and finally a Break-Transmission
(B) packet, as for ordinary file transfer.
A long reply should begin with an S packet unless an I-packet exchange has al-
ready taken place, and the type 1 (single-character) block check is being used.
8.2.6. Additional Server Commands
The following server commands request the server to perform tasks other than
sending or receiving files. Almost any of these can have either short or long
replies. For instance, the Generic Erase (GE) command may elicit a simple ACK,
or a stream of packets containing the names of all the files it erased (or
didn't erase). These commands are now described in more detail; arguments are
as provided in commands typed to the user KERMIT (subject to prefix encoding);
no transformations to any kind of normal or canonic form are done -- filenames
and other operands are in the syntax of the server's host system.
I Login. For use when a KERMIT server is kept perpetually running on a dedi-
cated line. This lets a new user obtain an identity on the server's host
system. If the data field is empty, this removes the user's identity, so
that the next user does not get access to it.
L Logout, Bye. This shuts down the server entirely, causing the server it-
self to log out its own job. This is for use when the server has been
started up manually by the user, who then wishes to shut it down remotely.
For a perpetual, dedicated server, this command simply removes the server's
access rights to the current user's files, and leaves the server waiting
for a new login command.
F Finish. This is to allow the user to shut down the server, putting its
terminal back into normal (as opposed to binary or raw) mode, and putting
the server's job back at system command level, still logged in, so that the
user can connect back to the job. For a perpetual, dedicated server, this
command behaves as the L (BYE) command.
C CWD. Change Working Directory. This sets the default directory or area
for file transfer on the server's host. With no operands, this command
sets the default area to be the user's own default area.
D Directory. Send a directory listing to the user. The user program can
display it on the terminal or store it in a file, as it chooses. The
directory listing should contain file sizes and creation dates as well as
file names, if possible. A wildcard or other file-group designator may be
specified to ask the server list only those files that match. If no
operand is given, all files in the current area should be shown.
U Disk Usage Query. The server responds with the amount of space used and
the amount left free to use, in K bytes (or other units, which should be
specified).
E Erase (delete). Delete the specified file or file group.
T Type. Send the specified file or file group, indicating (by starting with
an X packet rather than an F packet, or else by using the Type attribute)
that the file is to be displayed on the screen, rather than stored.
Optional Features Page 33
R Rename. Change the name of the file or files as indicated. The string in-
dicating the new name may contain other attributes, such as protection
code, permitted in file specifications by the host.
K Copy. Produce a new copy of the file or file group, as indicated, leaving
the source file(s) unmodified.
W Who's logged in? (Finger). With no arguments, list all the users who are
logged in on the server's host system. If an argument is specified,
provide more detailed information on the specified user or network host.
M Short Message. Send the given short (single-packet) message to the in-
dicated user's screen.
P Program. This command has two arguments, program name (filespec), and
command(s) for the program. The first field is required, but may be left
null (i.e. zero length). If it is null, the currently loaded program is
"fed" the specified command. If not null, the specified program is loaded
and started; if a program command is given it is fed to the program as an
initial command (for instance, as a command line argument on systems that
support that concept). In any case, the output of the program is sent back
in packets as either a long or short reply, as described above.
J Journal. This command controls server transaction logging. The data field
contains one of the following:
+ Begin/resume logging transactions. If a filename is given, close any
currently open transaction and then open the specified file as the new
transaction log. If no name given, but a log file was already open,
resume logging to that file. If no filename was given and no log was
open, the server should open a log with a default name, like
TRANSACTION.LOG.
- Stop logging transactions, but don't close the current transaction log
file.
C Stop logging and close the current log.
S Send the transaction log as a file. If it was open, close it first.
Transaction logging is the recording of the progress of file transfers. It
should contain entries showing the name of each file transferred, when the
transfer began and ended, whether it completed successfully, and if not,
why.
V Set or Query a variable. The command can be S or Q. The first argument is
the variable name. The second argument, if any, is the value.
S Set the specified variable to the specified value. If the value is
null, then undefine the variable. If the variable is null then do
nothing. If the variable did not exist before, create it. The server
should respond with an ACK if successful, and Error packet otherwise.
Q Query the value of the named variable. If no variable is supplied,
display the value of all active variables. The server responds with
either a short or long reply, as described above. If a queried vari-
Optional Features Page 34
able does not exist, a null value is returned.
Variables are named by character strings, and have character string values,
which may be static or dynamic. For instance, a server might have built-in
variables like "system name" which never changes, or others like "mail
status" which, when queried, cause the server to check to see if the user
has any new mail.
8.2.7. Host Commands
Host commands are conceptually simple, but may be hard to implement on some
systems. The C packet contains a text string in its data field which is simply
fed to the server's host system command processor; any output from the proces-
sor is sent back to the user in KERMIT packets, as either a short or long
reply.
Implementation of this facility under UNIX, with its forking process structure
and i/o redirection via pipes, is quite natural. On other systems, it could be
virtually impossible.
8.2.8. Exchanging Parameters Before Server Commands
In basic KERMIT, the Send-Init exchange is always sufficient to configure the
two sides to each other. During server operation, on the other hand, some
transactions may not begin with a Send-Init packet. For instance, when the
user sends an R packet to ask the server to send a file, the server chooses
what block check option to use. Or if the user requests a directory listing,
the server does not know what packet length to use.
The solution to this problem is the "I" (Init-Info) packet. It is exactly like
a Send-Init packet, and the ACK works the same way too. However, receipt of an
I packet does not cause transition to file-send state. The I-packet exchange
simply allows the two sides to set their parameters, in preparation for the
next transaction.
Servers should be able to receive and ACK "I" packets when in server command
wait. User KERMITs need not send "I" packets, however; in that case, the serv-
er will assume all the defaults for the user listed on page 25, or whatever
parameters have been set by other means (e.g. SET commands typed to the server
before it was put in server mode).
User Kermits which send I packets should be prepared to receive and ignore an
Error packet in response. This could happen if the server has not implemented
I packets.
8.3. Alternate Block Check Types
There are two optional kinds of block checks:
Type 2
A two-character checksum based on the low order 12 bits of the arithmetic
sum of the characters in the packet (from the LEN field through the last
data character, inclusive) as follows:
Optional Features Page 35
1 2
--------+--------------+-------------+
...data | char(b6-b11) | char(b0-b5) |
--------+--------------+-------------+
For instance, if the 16-bit result is 154321 (octal), then the 2 character
block check would be "C1".
Type 3
Three-character 16-bit CRC-CCITT. The CRC calculation treats the data it
operates upon as a string of bits with the low order bit of the first
character first and the high order bit of the last character last. The in-
itial value of the CRC is taken as 0; the 16-bit CRC is the remainder after
16 12 5
dividing the data bit string by the polynomial X +X +X +1 (this calcula-
tion can actually be done a character at a time, using a simple table
lookup algorithm). The result is represented as three printable characters
at the end of the packet, as follows:
1 2 3
--------+---------------+--------------+-------------+
...data | char(b12-b15) | char(b6-b11) | char(b0-b5) |
--------+---------------+--------------+-------------+
For instance, if the 16-bit result is 154321 (octal), then the 3 character
block check would be "-C1". The CRC technique chosen here agrees with many
hardware implementations (e.g. the VAX CRC instruction). A useful refer-
ence on table-driven CRC calculations can be found in "Byte-wise CRC
Calculations" by Aram Perez in IEEE MICRO, June 1983, p.40.
The single-character checksum has proven quite adequate in practice. The other
options can be used only if both sides agree to do so via Init packet (S or I)
exchange. The 2 and 3 character block checks should only be used under con-
ditions of severe line noise and packet corruption.
Since type 2 and 3 block checks are optional, not all KERMITs can be expected
to understand them. Therefore, during initial connection, communication must
begin using the type 1 block check. If type 2 or 3 block checks are agreed to
during the "I" or "S" packet exchange, the switch will occur only after the
Send-Init has been sent and ACK'd with a type 1 block check. This means that
the first packet with a type 2 or 3 block check must always be an "F" or "X"
packet. Upon completion of a transaction, both sides must switch back to type
1 (to allow for the fact that neither side has any way of knowing when the
other side has been stopped and restarted). The transaction is over after a
"B" or "E" packet has been sent and ACK'd, or after any error that terminates
the transaction prematurely or abnormally.
A consequence of the foregoing rule is that if a type 2 or 3 block check is to
be used, a long reply sent by the server must begin with a Send-Init (S)
packet, even if an I packet exchange had already occurred. If type 1 block
checks are being used, the S packet can be skipped and the transfer can start
with an X or F packet.
A server that has completed a transaction and is awaiting a new command may
send out periodic NAKs for that command (packet 0). Those NAKs must have type
1 block checks.
Optional Features Page 36
The use of alternate block check types can cause certain complications. For
instance, if the server gets a horrible error (so bad that it doesn't even send
an error packet) and reverts to command wait, sending NAKs for packet 0 using a
type 1 block check, while a transfer using type 2 or 3 block checks was in
progress, neither side will be able to read the other's packets. Communication
can also grind to a halt if A sends a Send-Init requesting, say, type 3 block
checks, B ACKs the request, switches to type 3 and waits for the X or F packet
with a type 3 block check, but the ACK was lost, so A resends the S packet with
a type 1 block check. Situations like this will ultimately resolve themselves
after the two sides retransmit up to their retry threshhold, but can be rec-
tified earlier by the use of two heuristics:
- The packet reader can assume that if the packet type is "S", the
block check type is 1.
- A NAK packet never has anything in its data field. Therefore, the
block check type can always be deduced by the packet reader from the
length field of a NAK. In fact, it is the value of the length field
minus 2. A NAK can therefore be thought of as a kind of "universal
synchronizer".
These heuristics tend violate the layered nature of the protocol, since the
packet reader should normally be totally unconcerned with the packet type
(which is of interest to the application level which invokes the packet
reader). A better design would have had each packet include an indicator of
the type of its own block check; this would have allowed the block check type
to be changed dynamically during a transaction to adapt to changing conditions.
But it's too late for that now...
8.4. Interrupting a File Transfer
This section describes an optional feature of the KERMIT protocol to allow
graceful interruption of file transfer. This feature is unrelated to server
operation.
To interrupt sending a file, send an EOF ("Z") packet in place of the next data
packet, including a "D" (for Discard) in the data field. The recipient ACKs
the Z packet normally, but does not retain the file. This does not interfere
with older Kermits on the receiving end; they will not inspect the data field
and will close the file normally. The mechanism can be triggered by typing an
interrupt character at the console of the sending KERMIT program. If a
(wildcard) file group is being sent, it is possible to skip to the next file or
to terminate the entire batch; the protocol is the same in either case, but the
desired action could be selected by different interrupt characters, e.g. CTRL-X
to skip the current file, CTRL-Z to skip the rest of the batch.
To interrupt receiving a file, put an "X" in the data field of an ACK for a
data packet. To interrupt receiving an entire file group, use a "Z". The user
could trigger this mechanism by typing an interrupt character by typing, say,
CTRL-X and CTRL-Z, respectively, at the receiving KERMIT's console. A sender
that was aware of the new feature, upon finding one of these codes, would act
as described above, i.e. send a "Z" packet with a "D" code; a sender that did
not implement this feature would simply ignore the codes and continue sending.
In this case, and if the user wanted the whole batch to be cancelled (or only
one file was being sent), the receiving KERMIT program, after determining that
Optional Features Page 37
the sender had ignored the "X" or "Z" code, could send an Error (E) packet to
stop the transfer.
The sender may also choose to send a Z packet containing the D code when it
detects that the file it is sending cannot be sent correctly and completely
-- for instance, after sending some packets correctly, it gets an i/o error
reading the file. Or, it notices that the "8th bit" of a file byte is set when
the file is being sent as a text file and no provision has been made for trans-
mitting the 8th bit.
8.5. Transmitting File Attributes
The optional Attributes (A) packet provides a mechanism for the sender of a
file to provide additional information about it. This packet can be sent if
the receiver has indicated its ability to process it by setting the Attributes
bit in the capability mask. If both sides set this bit in the Kermit
capability mask, then the sender, after sending the filename in the "F" packet
and receiving an acknowledgement, may (but does not have to) send an "A" packet
to provide file attribute information.
Setting the Attributes bit in the capability mask does not indicate support for
any particular attributes, only that the receiver is prepared to accept the "A"
packet.
The attributes are given in the data field of the "A" packet. The data field
consists of 0 or more subfields, which may occur in any order. Each subfield
is of the following form:
+-----------+--------------+------+
| ATTRIBUTE | char(LENGTH) | DATA |
+-----------+--------------+------+
where
ATTRIBUTE is a single printable character other than space,
LENGTH is the length of the data characters (0 to 94), with 32 added to
produce a single printable character, and
DATA is length characters worth of data, all printable characters.
No quoting or prefixing is done on any of this data.
More than one attribute packet may be sent. The only requirement is that all
the A packets for a file must immediately follow its File header (or X) packet,
and precede the first Data packet.
There may be 93 different attributes, one for each of the 93 printable ASCII
characters other than space. These are assigned in ASCII order.
! (ASCII 33)
Length. The data field gives the length in K (1024) bytes, as a
printable decimal number, e.g. "!#109". This will allow the receiver
to determine in advance whether there is sufficient room for the
file, and/or how long the transfer will take.
Optional Features Page 38
" (ASCII 34)
Type. The data field can contain some indicator of the nature of the
file. Operands are enclosed in {braces}, optional items in
[brackets].
A[{xx}] ASCII text, containing no 8-bit quantities, logical records
(lines) delimited by the (quoted) control character sequence
{xx}, represented here by its printable counterpart (MJ =
CRLF, J = LF, etc). For instance AMJ means that the ap-
pearance of #M#J (the normal prefixed CRLF sequence) in a
file data packet indicates the end of a record, assuming the
current control prefix is "#". If {xx} is omitted, MJ will
be assumed.
B[{xx}] Binary. {xx} indicates in what manner the file is binary:
8 (default) The file is a sequence of 8-bit bytes, which
must be saved as is. The 8th bit may be sent "bare", or
prefixed according to the Send-Init negotiation about
8th-bit prefixing.
36 The file is a PDP-10 format binary file, in which five
7-bit bytes are fit into one 36-bit word, with the final
bit of each word being represented as the "parity bit" of
every 5th character (perhaps prefixed).
D{x} Moved from here to FORMAT attribute
F{x} Moved from here to FORMAT attribute
I[{x}] Image. The file is being sent exactly as it is represented
on the system of origin. For use between like systems.
There are {x} usable bits per character, before prefixing.
For instance, to send binary data from a system with 9-bit
bytes, it might be convenient to send three 6-bit characters
for every two 9-bit bytes. Default {x} is 8.
# (ASCII 35)
Creation Date, expressed as "[yy]yymmdd[ hh:mm[:ss]]" (ISO standard
julian format), e.g. 831009 23:59. The time is optional; if given,
it should be in 24-hour format, and the seconds may be omitted, and a
single space should separate the time from the date.
$ (ASCII 36)
Creator's ID, expressed as a character string of the given length.
% (ASCII 37)
Account to charge the file to, character string.
& (ASCII 38)
Area in which to store the file, character string.
' (ASCII 39)
Password for above, character string.
( (ASCII 40)
Optional Features Page 39
Block Size. The file has, or is to be stored with, the given block
size.
) (ASCII 41)
Access:
N New, the normal case -- create a new file of the given name.
S Supersede (overwrite) any file of the same name.
A Append to file of the given name.
* (ASCII 42)
Encoding:
A ASCII, normal ASCII encoding with any necessary prefixing, etc.
H Hexidecimal "nibble" encoding.
E EBCDIC (sent as if it were a binary file).
X Encrypted.
Q{x}
Huffman Encoded for compression. First x bytes of the file are
the key.
# (ASCII 43)
Disposition (operands are specified in the syntax of the receiver's
host system):
M{user(s)} Send the file as Mail to the specified user(s).
O{destination} Send the file as a lOng terminal message to the
specified destination (terminal, job, or user).
S[{options}] Submit the file as a batch job, with any specified
options.
P[{options}] Print the file on a system printer, with any
specified options, which may specify a particular
printer, forms, etc.
T Type the file on the screen.
L[{aaa}] Load the file into memory at the given address, if
any.
X[{aaa}] Load the file into memory at the given address and
eXecute it.
A Archive the file; save the file together with the at-
tribute packets that preceded it, so that it can be
sent back to the system of origin with all its at-
tributes intact. A file stored in this way should be
specially marked so that the KERMIT that sends it
back will recognize the attribute information as dis-
tinct from the file data.
, (ASCII 44)
Protection. Protection code for the file, in the syntax of the
receiver's host file system. With no operand, store according to the
Optional Features Page 40
system's default protection for the destination area.
- (ASCII 45)
Protection. Protection code for the file with respect to the
"public" or "world", expressed generically in a 6-bit quantity (made
printable by char()), in which the bits have the following meaning:
b0: Read Access
b1: Write Access
b2: Execute Access
b3: Append Access
b4: Delete Access
b5: Directory Listing
A one in the bit position means allow the corresponding type of ac-
cess, a zero means prohibit it. For example, the letter "E" in this
field would allow read, execute, and directory listing access
(unchar("E") = 69-32 = 37 = 100101 binary).
. (ASCII 46)
Machine and operating system of origin. This is useful in conjunc-
tion with the archive disposition attribute. It allows a file, once
archived, to be transferred among different types of systems, retain-
ing its archive status, until it finds its way to a machine with the
right characteristics to de-archive it. The systems are denoted by
codes; the first character is the major system designator, the second
designates the specific model or operating system. A third character
may be added to make further distinctions, for instance operating
system version. The systems below do not form a complete collection;
many more can and probably will be added.
A Apple microcomputers
1 Apple II, DOS
2 Apple III
3 Macintosh
4 Lisa
B Sperry (Univac) mainframes
1 1100 series, EXEC
C CDC mainframes
1 Cyber series, NOS
D DEC Systems
1 DECsystem-10/20, TOPS-10
2 DECsystem-10/20, TOPS-20
3 DECsystem-10/20, TENEX
4 DECsystem-10/20, ITS
5 DECsystem-10/20, WAITS
6 DECsystem-10/20, MAXC
7 VAX-11, VMS
8 PDP-11, RSX-11
Optional Features Page 41
9 PDP-11, IAS
A PDP-11, RSTS/E
B PDP-11, RT-11
C Professional-300, P/OS
D Word Processor (WPS or DECmate), WPS
D Honeywell mainframes
1 MULTICS systems
2 DPS series, running CP-6
F Data General machines
1 RDOS
2 AOS
G PR1ME machines, PRIMOS
H Hewlett-Packard machines
1 HP-1000, RTE
2 HP-3000, MPE
I IBM 370-series and compatible mainframes
1 VM/CMS
2 MVS/TSO
3 DOS
4 MUSIC
5 GUTS
6 MTS
J Tandy microcomputers, TRSDOS
K Atari micros, DOS
L-T Reserved
U Portable Operating or File Systems
1 UNIX
2 Software Tools
3 CP/M-80
4 CP/M-86
5 CP/M-68K
6 MP/M
7 Concurrent CP/M
8 MS-DOS
9 UCSD p-System
A MUMPS
/ (ASCII 47)
Format of the data within the packets.
A{xx} Variable length delimited records, terminated by the
character sequence {xx}, where xx is a string of one
Optional Features Page 42
or more control characters, represented here by their
unprefixed printable equivalents, e.g. MJ for ?M?J
(CRLF).
D{x} Variable length undelimited records. Each logical
record begins with an {x}-character ASCII decimal
length field (similar to ANSI tape format "D"). For
example, "D$" would indicate 4-digit length fields,
like "0132".
F{xxxx} Fixed-length undelimited records. Each logical
record is {xxxx} bytes long.
R{x} For record-oriented transfers, to be used in combina-
tion with one of the formats given above. Each
record begins (in the case of D format, after the
length field) with an x-character long position field
indicating the byte position within the file at which
this record is to be stored.
M{x} For record-oriented transfers, to be used in combina-
tion with one of the formats given above. Maximum
record length for a variable-length record.
0 (ASCII 48)
Special system-dependent parameters for storing the file on the sys-
tem of origin, for specification of exotic attributes not covered ex-
plicitly by any of the KERMIT attribute descriptors. These are given
as a character string in the system's own language, for example a
list of DCB parameters in IBM Job Control Language.
1-@ (ASCII 49-64)
Reserved
Other attributes can be imagined, and can be added later if needed. However,
two important points should be noted:
- The receiver may have absolutely no way of honoring, or even record-
ing, a given attribute. For instance, CP/M-80 has no slot for crea-
tion date or creator's ID in its FCB; the DEC-20 has no concept of
block size, etc.
- The sender may have no way of determining the correct values of any
of the attributes. This is particularly true when sending files of
foreign origin.
The "A" packet mechanism only provides a way to send certain information about
a file to the receiver, with no provision or guarantee about what the receiver
may do with it. That information may be obtained directly from the file's
directory entry (FCB, FDB, ...), or specified via user command.
The ACK to the "A" packet may in turn have information in its data field.
However, no complicated negotiations about file attributes may take place, so
the net result is that the receiver may either refuse the file or accept it.
The receiver may reply to the "A" packet with any of the following codes in the
data field of the ACK packet:
Optional Features Page 43
<null> (empty data field) I accept the file, go ahead and send it.
N[{xxx}]
I refuse the file as specified, don't send it; {xxx} is a string of
zero or more of the attribute characters listed above, to specify what
attributes I object to (e.g. "!" means it's too long, "&" means I don't
have write access to the specified area, etc).
Y[{xxx}]
I agree to receive the file, but I cannot honor attributes {xxx}, so I
will store the file according to my own defaults.
Y (degenerate case of Y{xxx}, equivalent to <null>, above)
How the receiver actually replies is an implementation decision. A NAK in
response to the "A" packet means, of course, that the receiver did not receive
the "A" correctly, not that it refuses to receive the file.
8.6. Advanced KERMIT Protocol State Table
The simple table presented previously is sufficient for a basic KERMIT im-
plementation. The following is a state table for the full Kermit protocol, in-
cluding both server mode and sending commands to a server Kermit. It does not
include handling of the file attributes packet (A). Note that states whose
names start with "Send" always send a packet each time they are entered (even
when the previous state was the same). States whose name starts with "Rec",
always wait for a packet to be received (up to the timeout value), and process
the received packet. States whose names do not include either send or receive
do not process packets directly. These are states which perform some local
operation and then change to another state.
The initial state is determined by the user's command. A "server" command
enters at Rec_Server_Idle. A "send" command enters at Send_Init. A "receive"
command (the old non-server version, not a "get" command) enters at Rec_Init.
Any generic command, the "get" command, and the "host" command enter at either
Send_Server_Init or Send_Gen_Cmd, depending upon the expected response.
Under "Rec'd Msg", the packet type of the incoming message is shown, followed
by the packet number in parentheses; (n) means the current packet number, (n-1)
and (n+1) mean the previous and next packet numbers (modulo 64), (0) means
packet number zero. Following the packet number may be slash and a letter, in-
dicating some special signal in the data field. For instance Z(n)/D indicates
a Z (EOF) packet, sequence number n, with a "D" in the data field.
Under "Action", "r+" means that the retry count is incremented and compared
with a threshhold; if the threshhold is exceeded, an Error packet is sent and
the state changes to "Abort". "n+" means that the packet number is incre-
mented, modulo 64, and the retry count, r, is set back to zero.
Optional Features Page 44
State Rec'd Msg Action Next state
Rec_Server_Idle -- Server idle, waiting for a message
Set n and r to 0
I(0) Send ACK Rec_Server_Idle
S(0) Process params,
ACK with params, n+ Rec_File
R(0) Save file name Send_Init
K, C or G(0) Short reply:
ACK(0)/reply Rec_Server_Idle
Long reply:
init needed Send_Init
init not needed, n+ Open_File
Timeout Send NAK(0) Rec_Server_Idle
Other Error Rec_Server_Idle
Rec_Init -- Entry point for non-server RECEIVE command
Set n and r to 0
S(0) Process params, send
ACK with params, n+ Rec_File
Timeout Send NAK(0), r+ Rec_Init
Other NAK Abort
Rec_File -- Look for a file header or EOT message
F(n) Open file, ACK, n+ Rec_Data
X(n) Prepare to type on
screen, ACK, n+ Rec_Data
B(n) ACK Complete
S(n-1) ACK with params, r+ Rec_File
Z(n-1) ACK, r+ Rec_File
Timeout NAK, r+ Rec_File
Other NAK Abort
Rec_Data -- Receive data up to end of file
D(n) Store data, ACK, n+;
If interruption wanted
include X or Z in ACK Rec_Data
D(n-1) Send ACK, r+ Rec-Data
Z(n) Close file, ACK, n+ Rec_File
Z(n)/D Discard file, ACK, n+ Rec_File
F(n-1) Send ACK, r+ Rec_Data
X(n-1) Send ACK, r+ Rec_Data
Timeout Send NAK, r+ Rec_Data
Other Send E Abort
Optional Features Page 45
Send_Init -- Also entry for SEND command
Set n and r to 0, send S(0) with parameters
Y(0) Process params, n+ Open_File
N, Timeout r+ Send_Init
Other r+ Send_Init
Open_File -- Open file or set up text to send
Send_File
Send_File -- Send file or text header
Send F or X(n)
Y(n), N(n+1) Get first buffer of Send_Data or Send_Eof if
data, n+ empty file or text
N, Timeout r+ Send_File
Other Abort
Send_Data -- Send contents of file or textual information
Send D(n) with current buffer
Y(n), N(n+1) n+, Get next buffer Send_Data or Send_Eof if
at end of file or text
Y(n)/X or Z n+ Send_Eof
N, Timeout r+ Send_Data
Other Abort
Send_Eof -- Send end of file indicator
Send Z(n); if interrupting send Z(n)/D
Y(n), N(n+1) Open next file, n+ Send_File if more, or
Send_Break if no more
or if interrupt "Z".
N, Timeout r+ Send_Eof
Other Abort
Send_Break -- End of Transaction
Send B(n)
Y(n), N(0) Complete
N(n), Timeout Send_Break
Other Abort
Optional Features Page 46
Send_Server_Init - Entry for Server commands which expect large response.
Send I(0) with parameters
Y(0) Process params Send_Gen_Cmd
N, Timeout r+ Send_Server_Init
E Use default params Send_Gen_Cmd
Other Abort
Send_Gen_Cmd - Entry for Server commands which expect short response (ACK)
Send G, R or C(0)
S(0) Process params,
ACK with params, n+ Rec_File
X(1) Setup to type on
terminal, n+ Rec_Data
Y(0) Type data on TTY Complete
N, Timeout r+ Send_Gen_Cmd
Other Abort
Complete -- Successful Completion of Transaction
Set n and r to 0;
If server, reset params, enter Rec_Server_Idle
otherwise exit
Abort -- Premature Termination of Transaction
Reset any open file, set n and r to 0
If server, reset params, enter Rec_Server_Idle
otherwise exit
Exit, Logout states
Exit or Logout
Note that the generic commands determine the next state as follows:
1. If the command is not supported, an error packet is sent and the
next state is "Abort".
2. If the command generates a response which can be fit into the data
portion of an ACK, an ACK is sent with the text (quoted as
necessary) in the data portion.
3. If the command generates a large response or must send a file, noth-
ing is sent from the Rec_Server_Idle state, and the next state is
either Send_Init (if either no I message was received or if alter-
Optional Features Page 47
nate block check types are to be used), or Open_File (if an I mes-
sage was received and the single character block check is to be
used).
4. If the command is Logout, an ACK is sent and the new state is
Logout.
5. If the command is Exit, an ACK is sent and the new state is Exit.
KERMIT Commands Page 48
9. KERMIT Commands
The following list of KERMIT commands and terms is suggested. It is not in-
tended to recommend a particular style of command parsing, only to promote a
consistent vocabulary, both in documentation and in choosing the names for com-
mands.
9.1. Basic Commands
SEND This verb tells a Kermit program to send one or more files from its own
file structure.
RECEIVE This verb should tell a Kermit program to expect one or more files to
arrive.
GET This verb should tell a user Kermit to send one or more files. Some
Kermit implementations have separate RECEIVE and GET commands; others
use RECEIVE for both purposes, which creates confusion.
Since it can be useful, even necessary, to specify different names for source
and destination files, these commands should take operands as follows (optional
operands in [brackets]):
SEND local-source-filespec [remote-destination-filespec]
If the destination file specification is included, this will go in the
file header packet, instead of the file's local name.
RECEIVE [local-destination-filespec]
If the destination filespec is given, the incoming file will be stored
under that name, rather than the one in the file header pakcet.
GET remote-source-filespec [local-destination-filespec]
If the destination filespec is given, the incoming file will be stored
under that name, rather than the one in the file header packet.
If a file group is being sent or received, alternate names should not be used.
9.2. Program Management Commands
EXIT Leave the KERMIT program, doing whatever cleaning up must be done
-- deassigning of devices, closing of files, etc.
QUIT Leave the KERMIT program without cleaning up, in such a manner as to
allow further manipulation of the files and devices.
PUSH Preserve the current KERMIT environment and enter the system command
processor.
TAKE Read and execute KERMIT program commands from a local file.
LOG Specify a log for file transfer transactions, or for terminal session
loggin.
KERMIT Commands Page 49
9.3. Terminal Emulation Commands
CONNECT This verb, valid only for a local Kermit, means to go into terminal
emulation mode; present the illusion of being directly connected as a
terminal to the remote system. Provide an "escape character" to allow
the user to "get back" to the local system. The escape character, when
typed, should take a single-character argument; the following are sug-
gested:
0 (zero) Transmit a NUL
B Transmit a BREAK
C Close the connection, return to local KERMIT command level
P Push to system command processor
Q Quit logging (if logging is being done)
R Resume logging
S Show status of connection
? Show the available arguments to the escape character
(a second copy of the escape character): Transmit the escape
character itself
Lower case equivalents should be accepted. If any invalid argument is
typed, issue a beep.
Also see the SET command.
9.4. Special User-Mode Commands
These commands are used only by Users of Servers.
BYE This command sends a message to the remote server to log itself out,
and upon successful completion, terminate the local Kermit program.
FINISH This command causes the remote server to shut itself down gracefully
without logging out its job, leaving the local KERMIT at KERMIT command
level, allowing the user to re-CONNECT to the remote job.
==============================================================================
/ File 05 / NIA069 /
/ DEPARTMENT OF THE ARMY FIELD MANUAL Part 02 of 02 /
/ Explosives and Demolitions /
/ extract. /
/ HEADQUATERS, DEPARTMENT OF THE ARMY /
/ February 1971 /
/ /
/ Typed by: Death Jester /
/ Date Typed In: 01DEC90 /
Section III. STEEL-CUTTING CHARGES [Part 02 of 02]
3-7. Cutting Steel With Explosives
a. IMPORTANT FACTORS. In the preparation of steel-cutting charges,
the factors of type, size and placement of the explosive are important
for successful operations. The confinement or tamping of the charge is
rarely practical or possible. Formulas for the computation of the size
of the charge vary with the type of steel--structural, high carbon, and
so forth. Placement of the charge in direct contact with the target is
more important with steel than with other materials.
(1) FORMULA FOR STRUCTURAL STEEL. Charges to cut I-beams,
builtup girders, steel plates, columns, and other structural steel
sections are computed by formal as follows:
P = 3/8 A or P = 0.375 A where,
P = pounds of TNT required,
A = cross-section area, in square inches, of the steel member to
be cut, and
3/8 = 0.375 = constant
(2) FORMULA FOR OTHER STEELS.
(a) The formula below is recommended for the computation of
block cutting charges for high-carbon or alloy steel, such as that found
in machinery.
P = D}
P = pounds of TNT
D = diameter or thickness in inches of section to be cut.
(b) For round steel bars, such as concrete reinforcing rods,
where the small size makes charge placement difficult or impossible and
for chains, cables, and steel rods, of a diameter of 2 inches or less,
use
P = D
P = pounds of TNT
D = diameter in inches of section to be cut.
Such steel, however, may be cut by "rule of thumb:"
For round bars up to 1 inch in diameter, use 1 pound TNT.
For round bars over 1 inch up to 2 inches in diameter, use 2 pounds
of TNT.
(3) RAILROAD RAIL. The height of ralroad rail is the critical
dimension for calculating explosive required. Rails 5 inches or more in
height may be cut with 1 pound of TNT. For rails less than 5 inches in
height, 1/2 pound of TNT is adequate.
(4) PROBLEM:
Determine the amount of TNT required to cut the steel I-beam shown in
figure 3-5. THe solution is given in the figure.
(5) PROBLEM:
How much TNT is needed to cut the steel chain in figure 3-6? The
solution is given in figure 3-6. Notice that the link is to be cut in
two places (one cut on each side) to cause complete failure. If the
explosive is long enough to bridge both sides of the link, or large
enough to fit snugly between the two links, use one charge; but if it is
not, use two separately primed charges.
(6) USE OF THE TABLE IN MAKING CALCULATIONS. Table 3-1 shows the
correct weight of TNT necessary to cut steel sections of various
dimensions calculated from the formula P = 3/8 A.
In using this table:
(a) Measure separately the rectangular sections of members.
(b) Find the corresponding charge for each section by using the
table.
(c) Total the charges for the sections.
(d) Use the next larger given dimension if dimensions of section
do not appear in the table.
(7) SOLUTION.
The problem in figure 3-5 may be solved as folows:
Charge for flanges: Charge for web:
width = 5 inches height = 11 inches
thickness = 1/2 inch thickness = 3/8 inch
Charge from table = Charge from table =
1.0 pounds 1.6 pounds
Total charge: 2 flanges = 2 x 1.0 = 2.0 pounds
web = 1 x 1.6 = 1.6 pounds
----------
3.6 pounds
Use 4 pounds of TNT.
b. FORMULAS FOR PLASTIC OR SHEET EXPLOSIVE CHARGES. When using
plastic explosives (M5A1 or M112) charges or sheet explosive (M118 or
M186) charges, which may be cut to fit the target and attached to the
surface of the target with little or no air gap, the following formulas,
based upon optimum charge configuration and optimum contact with the
target, may be used. The following charge calculations are based upon
the dimensions of the target, and with some practice these charges may
be calculated, prepared, and placed in less time than the charges
calculated by the formulas listed above. Thes charges may also be
prepared in advance for transportation to the site by wrapping them in
aluminum foil or heavy paper. The wrapper should be removed when the
charge is attached to the target. When preparing these charges the
explosive should be cut to the proper dimensions, not molded, as molding
the explosive will reduce its density thereby decreasing its
effectiveness.
(1) RIBBON CHARGE METHOD. The charge, if properly calculated and
placed, cuts stell with considerably less explosive than standard
charges. It is effective on noncircular steel targets up to 3 inches
thick (fig 3-7). Although this charge is based upon the used of C4
plastic explosive, sheet explosive may be used provided the 1/4- by 3 by
12-inch sheets of flexible explosive are used intact and complete
charges are at least 1/2 inch thick.
(a) CALCULATION. The effectiveness of the explosive depends
upon the width and thickness of the explosive. THe thickness of the
charge is one half the thickness of the stell. The width of the charge
is three times the thickness of the charge. The length of the charge
should be equal to the length of the desired cut.
(b) EXAMPLE. Determine the thickness and width of a ribbon
charge for cutting a steel plate 1 inch thick.
Charge thickness = 1/2 steel thickness
Charge thickness = 1/2(1) = 1/2 inch
Charge width = 3 times charge thickness
Charge width = 3(1/2) = 3/2 = 1 1/2 inches
Charge is 1/2 inch thick and 1 1/2 inches wide.
(c) DETONTATION. The ribbon charge may be detonated from the
center or from either end. It may be necessary when the charge
thickness is small (less than 3/4 inch) to place extra explosive around
or over the blasting cap.
(d) USE OF STRUCTURAL STEEL SECTIONS. The ribbon charge
(computed by formula given in (b) above) has proven applicable to
cutting structural steel sections (fig 3-8).
On wide-flange or I-beams of less than 2 inches of steel thickness, a
C-shaped charge is placed on one side to cut the web and half the top
and bottom flanges. THe other sides of these flanges are cut by two
offset ribbon charges, placed so that once edge is opposite the center
of th C-shaped charge as shown in A, figure 3-8. For beams with steel
thickness of 2 inches and over, the offset charges are placed so that
one edge is opposite the edge of the C-shaped charge as shown in B,
figure 3-8. FOr acceptable results, the charges must be detonated at
the SAME INSTANT. This is accomplished by priming the charges with
three exactly EQUAL LENGTHS of detonating cord with blasting caps
attached and placed in the charges as shown in C, figure 3-8. The
detonating cord primer may be initiated by an electric or nonelectric
system. Simultaneous detonation may also be accomplished with M6
electric blasting caps wired in series in the same circuit.
(2) CROSS FRACTURE METHOD (SADDLE CHARGE) FOR CUTTING MILLED STEEL
BARS. This method of steel cutting utilizes the destructive effect of
the end split or cross fracture formed in steel at the end of a charge
opposite the end where detonation was initiated. This technique may be
used on round, square, or rectangular milled steel bars up to 8 inches
square or 8 inches diameter. The cross fracture method uses a charge
cut in the shape of a triangle and is called a SADDLE CHARGE (fig 3-9).
(a) CALCULATION. The dimensions of the saddle charge are
computed from the dimensions of the target as follows:
Thickness of charge = 1 inch (thickness of M112 block of plastic
explosive).
Base of charge = 1/2 circumference of target.
Long axis of charge = Circumference of target.
(b) EXAMPLE. Determine the dimensions of a charge for cutting a
shaft 18 inches in circumference (may be measured with a string).
Thickness = 1 inch
Base = 1/2 x 18 = 9 inches
Long axis = 18 inches
Charge is 9 inches at base, 18 inches at long axis, and 1 inch thick.
(c) DETONATION. Detonation of the saddle charge is by the
placement of a military electric or nonelectric blasting cap at the apex
of the long axis.
(d) PLACEMENT. The long axis of the saddle charge should be
parallel with the long axis of the target. THe charge should be cut to
the correct shape and dimensions and then molded around the target,
taking care to insure that the charge is in intimate contact with the
target. This may be accomplished by taping the charge to the target.
(3) STRESS WAVE METHOD (DIAMOND CHARGE). This method of steel
cutting utilizes the destructive effect of tensile fractures induced
through the interaction of two colliding shock wave fronts from an
explosive charge simultaneously detonated at opposite ends. This
techniquie may be used on high carbon steel or steel alloy bars either
circular or square in cross section. The stress wave method uses a
charge cut in the shape of a diamond, and thus called a diamond charge
(fig 3-10).
(a) CALCULATION. The dimensions of the diamond charge are
computed from the dimensions of the target as follows:
Thickness of charge = 1 inch (thickness of M112 block of plastic
explosive).
Long axis of charge = Circumference of target.
Short axis of charge = 1/2 the circumference of the target.
(b) EXAMPLE. Determine the size of a charge for cutting a steel
alloy shaft 15 inches in circumference.
Thickness = 1 inch
Long axis = 15 inches
Short axis = 1/2 x 15 = 7 1/2 inches
Charge is 15 inches at long axis, 7 1/2 inches at short axis, and 1 inch
thick.
(c) DETONATION. The detonation of diamond charge must be done
SIMULTANEOUSLY from both short axis ends. This may be done by priming
with two pieces of detonating cord of the SAME LENGTH with nonelectric
blasting caps crimped to the ends. The detonating cord primers may be
detonated with an electric or nonelectric blasting cap. Simultaneous
detonation may also be accomplished with M6 electric blasting caps wired
in series in the same circuit.
(d) PLACEMENT. Wrap the explosive completely around the target
so that the ends of the long axis touch. It may be necessary to
slightly increase the dimensions of the charge so this may accomplished.
If necessary to insure complete contact with the target, tape the charge
to the target.
3-9. Charge Placement
a. STEEL SECTIONS. The size and type of a steel section determine
the placement of the explosive charge. Some elongated sections may be
cut by placing the explosive on one side of the section completely along
the proposed line of rupture. In some steel trusses in which the
individual memebers are fabricated from two or more primary sections,
such as angle irons or bars separated by space washers or gusset plates,
the charge must be placed with the opposing portions of the charge
offset the same distance as the thickness of the section being cut to
produce a shearing action (para 3-8b(1)(d)). Heavier I-beams, wide
flange beams, and columns may also require auxilliary charges placed on
the outside of the flanges. Care must be taken to insure that opposing
charges are never directly opposite each other, otherwise they tend to
neutralize the explosive effect.
b. RODS, CHAINS, AND CABLES. Block explosive, often difficult to
emplace, is not recommended for cutting steel rods, chains, and cables
if plastic explosive is available.
c. STEEL MEMBERS AND RAILROD RAILS. Charge placement for cutting
these are found in figures 3-11 and 4-39.
d. BUILT-UP MEMBERS. Built-up members frequently have an irregular
shape, which makes it difficult to obtain a close contact between the
explosive charge and all of the surface. If it is impractical to
distribute the charge properly to obtain close contact, the amount of
explosive should be increased.
e. IRREGULAR STEEL SHAPES. Composition C4 is a good explosive for
cutting irregular steel shapes because it is easily molded or pressed
into place to give maximum contact. In the case of the M5A1 block
charge, which uses C4, a light coating of adhesive compound or
automotive grease (GAA) applied to the steel surface will help hold the
explosive on the target. The M112 block, which also uses C4, and the
M118 sheet explosive have an adhesive coating on one side, which makes
placement easier.
f. SECURING EXPLOSIVES IN PLACE. All explosives except adhesive
types must be tied, taped, wedged in place unless they rest on
horizontal surfaces and are not in danger of being jarred out of place.
g. PRECAUTIONS. In cutting steel, the charge should be placed on the
same side as the firing party, as explosive charges throw steel
fragments (missiles) long distance at high velocities.
Section IV. PRESSURE CHARGES
3-10. Size of Charge
The pressure charge is used for the demolition of reinforced concrete
T-beam bridge superstructures. Since it requires the use of more
explosives than breaching charges, with comparable placement, it has
been replaced by the breaching charge (para 3-12 - 3-14).
a. FORMULA FOR TAMPED PRESSURE CHARGES. The amount of TNT required
for a tamped pressure charge is calculated by the formula below. If
explosive other than TNT is used, the calculated value must be divided
by the relative effectiveness factor.
P = 3H}T
P = pounds of TNT required for each beam (stringer)
H = height of beam (including thickness of roadway) in feet
T = thickness of beam in feet.
b. FORMULA FOR UNTAMPED PRESSURE CHARGES. The valure calculated for
P by the above formula is increased by one-third if the pressure charge
is not tamped to a minimum of 10 inches (P = 4H}T).
3-11. Charge Placement and Tamping
a. PLACEMENT. The correct amount of explosive is placed on the
roadway over the centerline of each stringer (fig 3-12) and alined
between the ends of the span. If a curb or sied rail prevents placing
the charge directly above the outside stringer, it is placed against
the curb or side rail. This does not require an increase in the size of
the explosive charge (See also para 4-22).
b. TAMPING. Pressure charges should be tamped whenever possible.
Effective tamping require a minimum of 10 inches of material. All
charges are primed to fire simultaneously.
Section V. BREACHING CHARGES
3-12. Critical Factors and Computation
Breaching charges are applied chiefly to the destruction of concrete
slab bridges, bridge beams, bridge piers, bridge abutments, and
permanent field fortifications. The size and shape, placement, and
tamping or confinement of the breaching charge are critical factors--
the size and confinement of the explosive being relatively more
important because of strength and bulk of the material to be breached.
High explosive breaching charges detonated in or against a target must
produce and transmit enough energy to the target to crater and spall the
material. THe metal reinforcing bars in reinforced concrete are not cut
by breaching charges. If it is necessary to remove or cut the
reinforcement, the necessary steel cutting formula is used after the
concrete is breached.
a. CALCULATION FORMULA. The size of a charge required to breach
concrete, masonry, rock or similar material is calculated by the formula
below. By proper adjustment of the P-value, the charge size for any
explosive may be readily determined.
P = R(cubed) KC where;
P = pounds of TNT required,
R = breaching radius (b below),
K = material factor, given in table 3-4, which reflects the
strength, hardness and mass of the material to be demolished (c
below),
C = a tamping factor, given in figure 3-13, which depends on the
location and tamping of the charge (d below)
b. BREACHING RADIUS R. The breaching radius R is the distance in
feet from an explosive in which all material is displaced or destroyed.
The breaching radius for external charges is the thickness of the mass
to be breached. The breaching radius for internal charges is one-half
the thickness of the mass to be breached if the charge is placed midway
into the mass. If holes are drilled less than halfway into the mass,
the breaching radius becomes the longer distance from center of the
charge to the outside of the mass. For example, if a 4-foot wall is to
be breached by an internal charge placed 1 foot into the wall, the
breaching radius is 3 feet. If it is to be breached by a centered
internal charge, the breaching radius is 2 foeet. The breaching radius
is 4 feet is an external charge is used. Values of R are rounded off to
the next highest 1/2-foot for external charges, and to the next highest
1/4-foot for internal charges.
c. MATERIAL FACTOR K. K is the factor that reflects the strength and
hardness of the material to be breached. Table 3-2, gives values for
the factor K for various types and thicknesses of material. If the type
of material in the object is in doubt, it is always assumed to be of the
stronger type. Concrete is assumed to be reinforced, unless it is known
not to be.
TABLE 3-2. VALUES OF K(MATERIAL FACTOR) FOR BREACHING CHARGES.
-------------------------!--------------------!------!
MATERIAL ! BREACHING RADIUS ! K !
-------------------------!--------------------!------!
Ordinary earth ! All values ! 0.07 !
-------------------------!--------------------!------!
Poor masonry, shale, ! Less than 5 ft ! 0.32 !
hardpan: Good Timber ! 5 ft or more ! 0.29 !
and earth construction ! ! !
-------------------------!--------------------!------!
Good masonry ! 1 ft or less ! 0.88 !
ordinary concrete ! 1.5-2.5 ft ! 0.48 !
rock ! 3.0-4.5 ft ! 0.40 !
! 5.0-6.5 ft ! 0.32 !
! 7 ft or more ! 0.27 !
-------------------------!--------------------!------!
Dense concrete ! 1 ft or less ! 1.14 !
first-class masonry ! 1.5-2.5 ft ! 0.62 !
! 3.0-4.5 ft ! 0.52 !
! 5.0-6.5 ft ! 0.41 !
! 7 ft or more ! 0.35 !
-------------------------!--------------------!------!
Reinforced concrete ! 1 ft or less ! 1.76 !
(concrete only: Will not ! 1.5-2.5 ft ! 0.96 !
cut reinforcing steel) ! 3.0-4.5 ft ! 0.80 !
! 5.0-6.5 ft ! 0.63 !
! 7 ft or more ! 0.54 !
-------------------------!--------------------!------!
d. TAMPING FACTOR C. The value of the tamping factor C depends on
the location and the tamping of the charge. Figure 3-13 shows typical
methods for placing charges and gives values of C to be used in the
breaching formula with both tamped and untamped charges. In selecting a
value of C from figure 3-13, a charge should be tamped with a solid
material such as sand or earth or tamped by water is not considered full
tamped unless it is covered to a depth equal to or greater than the
breaching radius.
e. USE OF FIGURE IN MAKING CALCULATIONS. Figure 3-14 gives the
amount of TNT required to breach reinforced concrete targets. The
amounts of TNT in the table were calculated from the formula
P = R(cubed)KC. To use the figure:
(1) Measure thickness of concrete.
(2) Decide how the charge will be placed against the target.
Compare the method of placement with the diagrams at the top of the
figure. If there is any question as to which column to use, always use
the column that will give the greater amount of explosive.
(3) For explosive other than TNT, use the relative effectiveness
factor (table 1-2).
f. EXAMPLE. Using figure 3-14, calculate the amount of TNT required
to breach a reinforced concrete wall 7 feet thick with an untamped
charge placed at a distance R above the ground. From the figure the
required amount of TNT is 334 pounds.
g. USING FIGURE FOR MATERIAL OTHER THAN REINFORCED CONCRETE. The
values given in figure 3-13 may be used to calculate breaching charges
for obstacles of material other than reinforced concrete by multiplying
the valure obtained from figure 3-14 by the proper conversion factor
given in table 3-3. To use the table ---
(1) Determine the type of material in the object. If in doubt
assume the material to be of the stronger type, e.g. assume concrete
reinforced, unless known otherwise.
(2) Using figure 3-14, determine the amount of explosive that
would be required if the object were made of reinforced concrete.
(3) Using table 3-3, determine the appropriate conversion factor.
(4) Multiply the number of pounds of explosive by the conversion
factor.
h. EXAMPLE. Using figure 3-14 and table 3-3, determine the amount of
TNT required to breach an ordinary masonry pier 4 1/2 feet thick with an
untamped charge placed 4 feet below the waterline. If the pier were
made of reinforced concrete, 146 pounds of TNT would be required to
breach it (fig 3-14). The conversion factor (table 3-3) is 0.5.
Therefore 146 x 0.5 = 73 pounds of TNT are required to breach the pier.
3-13. Placement and Number of Charges
a. PLACEMENT. In the demolition of piers and walls, the position for
the placement of explosive charges are rather limited. Unless a
demolition chamber is available, the charge (or charges) may be placed
against once face of the target either at ground level, somewhat above
ground level, or beneath the surface. A charge placed above ground
level is more effective than one placed directly on the ground. When
several charges are required to destroy a pier, slab, or wall and
elevated charges are desired, they are distributed equally at no less
than one breaching radius high from the base of the object to be
demolished. In this manner, the best use is obtained from the shock
waves of the blast. BREACHING CHARGES SHOULD BE PLACED SO THAT THERE IS
A FREE REFLECTION SURFACE ON THE OPPOSITE SIDE OF THE TARGET. This free
reflection surface is necessary for spalling to occur (see para 3-2).
All charges are thoroughly tamped with damp soil or filled sandbags if
time permits. (Tamping must be equal to or greater than the breaching
radius.) For piers, slabs, or walls partially submerged in water,
charges are placed equal to or greater than the breaching radius below
the waterline (fig 3-13).
b. CHARGE CONFIGURATIONS. In order to transmit the maximum
destructive shock into the target, the explosive charge should be placed
in the shape of a flat square with the flat side to the target. The
thickness of the charge is dependent upon the amount of explosive and is
given in table 3-4.
TABLE 3-4. THICKNESS OF BREACHING CHARGES*
___________________________________________________
Amount of explosive ! Thickness of charge
____________________________!______________________
Less than 5 lbs ! 1 inch
5 lbs to less than 40 lbs ! 2 inches
40 lbs to less than 300 lbs ! 4 inches
300 lbs or more ! 5 inches
____________________________!______________________
*These are approximate values
c. NUMBER OF CHARGES. The number of charges required to demolish a
pier, slab, or wall is calculated be the formula:
N = W/2R where,
N = number of charges,
W = width of pier, slab, or wall, in feet,
R = breaching radius in feet (para 3-12b).
2 = constant
If the calculated value of N is less that 1 1/4, use one charge; if it
is 1 1/4 to less than 2 1/2, use 2 charges; if it is 2 1/2 or more,
round off to nearest whole number. In breaching concrete beam bridges,
each beam is breached individually.
3-14. Opposed (Counterforce) Charge
This special breaching techniqure is effective against comparatively
small cubical or columnar concrete and masonry objects 4 feet or less in
thickness and wideth. It is not effective against piers or long
obstacles. The obstacle must also have at least three free faces or be
free standing. If constructed of plastic explosive properly placed and
detonated, counterforce charges produce excellent results with a
relatively small amount of explosive. Their effectiveness results from
simultaneous detonation of two charges placed directly opposite eache
other and as neer the center of the target as possible (fig 3-15).
a. CHARGE CALCULATION. The size is computed from the diameter or
thickness of the target in feet, as --
The amount of explosive = 1 1/2 x the thickness of the target in
feet (1 1/2 pounds per foot).
Fractional measurements are rounded off to the next higher foot prior to
multiplication. Fot example, a concrete target measuring 3 feet 9
inches thick requires 1 1/2 x 4 = 6 pounds of plastic explosive
(composition C4).
b. PREPARATION AND EMPLACEMENT. Divide the calculated amount of
explosive in half to make two identical charges. The two charges MUST
be placed diametrically opposite each other. This requires
accessibility to both sides of the target so that the charges may be
placed flush against the respective target sides.
c. PRIMING. The simultaneous explosion of both charges is mandatory
for optimum results. Crimp nonelectric blasting caps to equal lengths
of detonating cord. Prime both charges at the center rear point; then
form a V with the free ends of detonating cord and attach an electric or
nonelectric means of firing. Simultaneous detonation may also be
accomplished with M6 electric blasting caps wired in series in the same
circuit.
Section VI. CRATERING AND DITCHING CHARGES
3-15. Critical Factors
a. SIZE. Road craters, to be effective obstacles, must be too wide
for spanning by track-laying vehicles and too deep and steep sided for
any vehicle to pass through them. Blasted road craters will not stop
modern tanks indefinitely, because repeated attempts by the tank to
traverse the crater will pull loose soil from the slopes of the crater
into the bottom reducing both the depth of the crater and angle of the
slopes. Road craters are considered effective antitank obstacles if the
tank requires three or more passes to traverse the crater, thereby
providing sufficient time for antitank weapons to stop the tank. Road
craters must also be large enough to tie into natural or manmade
obstacles at each end. The effectiveness of blasted road craters may be
improved by placing log hurdles on either side, by digging the face on
the friendly side nearly vertical, by mining the site with antitank and
antipersonnel mines.
b. EXPLOSIVE. All military explosives may be used for blasting
antitank craters. A special 40-pound cratering charge, ammonium
nitrate, sued in a waterproof metal container, is used when available
(para 1-4).
c. SIZE AND PLACEMENT OF CHARGE. In deliberate cratering, holes are
bored to specific depths and spaced according to computation by formula,
as described below. In ditching, test shots are made and the diameter
and depth are increased as required.
d. CONFINEMENT OF CHARGE. Charges at cratering sites and antitank
ditching sites are placed in boreholes and properly stemmed. Those at
culvert sites are tamped with sandbags.
e. BREACHING HARD-SURFACED PAVEMENTS FOR CRATERING CHARGES.
Hard-surfaced pavement of roads and airfields is breached so that holes
may be dug for cratering charges. This is done effectively exploding
tamped charges on the pavement surface. A 1-pound charge of explosive
is used for each 2 inches of pavement thickness. It is tamped with
material twice as thick as the pavement. The pavemenmt may also be
breached by charges placed in boreholes drilled or blasted through it.
(A shaped charge readily blasts a small diameter borehole through the
pavement and into the subgrade.) Concrete should not be breached at an
expansion joint, because the concrete will shatter irregularly.
f. BOREHOLES FOR CRATERING CHARGES. Boreholes for cratering charges
may be dug by using motorized post hole augers or diggers. Boreholes
may also be made by use of the earth rod kit (para 1-41) or by a
mechanically drivin pin, widened with a detonating cord wick (para
3-27).
g. BLASTING BOREHOLES WITH SHAPED CHARGES. Standard shaped charges
may be used to blast boreholes in both paved and unpaved surfaces for
rapid road cratering with explosives. The 15-pound M2A4 shaped charge
detonated at 3 1/2 foot standoff and the 40-pound M3A1 shaped charge
detonated at 5-foot standoff will blast boreholes of up to 9-foot open
depths with 7-inch and larger diameters in both reinforced concrete
pavements and gravel surfaced roads. For maximum effectiveness, M3A1
shaped charges should be used to blast boreholes in thick, reinforced
concrete pavements laid on dense high-strength base courses. The M2A4
shaped charges may be used effectively to blast cratering charge
boreholes in reinforced concrete pavement of less than 6-inch thickness
laid on thin base courses or to blast boreholes in unpaved roads. Most
any kind of military explosive, including the cratering charges, can be
loaded directly into boreholes made by the M3A1 and the M2A4 shaped
charges. Shaped charges do not always produce open boreholes capable of
being loaded directly with 7-inch diameter cratering charges without
removal of some earth or widening of narrow areas. Many boreholes
having narrow diameters but great depth can be widened simply by
knocking material from the constricted areas with a pole or rod or by
breaking off the shattered surface concrete with a pick or crowbar. For
road cratering on asphalt or concrete surfaced roadways, blasting the
boreholes with shaped charges will expedite the cratering task by
eliminating the requirement for first breaching the pavement with
explosive charges (table 3-5).
3-16. Hasty Road Crater
This method (fig 3-16) takes the least amount of time for construction,
based upon number and depth of boreholes, but produces the least
effective barrier because of its depth and shape. The method described
below forms a V-shaped crater, about 6 to 7 feet deep and 20 to 25 feet
wide extending about 8 feet beyond each end crater. The sides have
slopes of 25 degrees to 35 degrees. Modern U.S. combat tanks (the M48
and M60) require an average of four passes to traverse hasty road
craters. Craters formed by boreholes less than 5 feet deep and loaded
with charges less than 50 pounds are ineffective against tanks. The
following hasty cratering method has proved satisfactory:
a. Dig all boreholes to the same depth; at least 6 feet. Space the
holes 5 feet apart center-to-center across the road. The formula for
the computation of the number of holes is : N = L-16/5 + 1, where
L = length of crater in feet measured across the roadway. Any
fractional number of holes is rounded off to the next highest number.
b. Load the boreholes with 10 pounds of explosive per foot of depth.
c. Prime all charges with detonating cord and connect them to fire
simultaneously. Under ground charges should always be primed with
detonating cord branch lines. A dual firing system should be used.
d. If the standard cratering charge is used, place a 1-pound priming
charge on the side of the charge for dual priming. For hasty cratering,
if standard cratering charges are used, each charge must be supplemented
with 10 pounds of additional explosive to total 50 pounds of explosive
per borehole.
Note. Each cratering charge must be carefully inspected for
possible water damage prior to emplacement.
e. Stem all boreholes with suitable material.
3-17. Deliberate Road Crater
This cratering method (fig 3-17) produces road craters that are more
effective than those resulting from the hasty method as they require an
average of eight passes to be crossed by modern U.S. tanks. The crater
produced is V-shaped, approximately 7 feet deep, 25 feet wide, with side
slopes about 30 degrees to 37 degrees. The crater extends about 8 feet
beyond the end holes. The method of placing charges is as follows:
a. Bore the holes 5 feet apart, center-to-center, in a line across
the roadway. The end holes are 7 feet deep and the others are
alternately 5 feet and 7 feet deep. The formula for the computation of
the number of holes is :
N = L-16/5 + 1
L = length of crater in feet measured across roadway
Any fractional number of holes is rounded off to the next highest
number. Two 5-foot holes must not be made next to each other. If they
are so calculated, one of them must be a 7-foot hole. The resulting two
adjacent 7-foot holes may be placed anywhere along the line.
b. Place 80 pounds of explosive in the 7-foot holes and 40 pounds of
explosive in the 5-foot holes.
c. Prime the charges as for hasty cratering. Dual priming of the
7-foot holes may be accomplished by independent priming of each of the
two cratering charges, if used.
d. Stem all holes with suitable material.
3-18. Relieved Face Road Crater
This cratering method (fig 3-18) produces road craters that are more
effective obstacles to modern tanks than the standard V-shaped craters.
This technique produces a trapezoidal-shaped crater about 7 feet deep
and 25 to 30 feet wide with unequal side slopes. In compact soil, such
as clay, the relieved face cratering method will provide and obstace
shaped as shown in A, figure 3-18. The side nearest the enemy slopes at
about 25 degrees from the road surface to the bottom while that on the
opposite side or friendly side is about 30 degrees to 40 degrees steep.
The exact shape, however depends of the type of soil found in the area
of operations. The procedure is as follows:
a. On dirt or gravel surfaced roads, drill two rows of boreholes 8
feet apart, spacing the boreholes on 7-foot centers. On hard surfaced
roads, drill the two rows 12 feet apart. The number of charges for the
friendly side row can be calculated by the formula N = L-10/7 + 1, where
L = length of crater in feet measured across the width of the road.
Any fractional number of holes should be rounded off to the next highest
number. Stagger the boreholes in the other row, as shown in B, figure
3-18. This row will always contain one less borehole than the other
row.
b. Make the boreholes on the friendly side 5 feet deep and load with
40 pounds of explosive, and those on the enemy side 4 feet deep and
load with 30 pounds of explosive.
c. Prime the charges is each row separately for simultaneous
detonation. There should be a delay of detonation of 1/2 to 1 1/2
seconds between rows, the row on the enemy side being detonated first.
Best results will be obtained if the charges on the friendly side are
fired while the earth moved in the first row is still in the air.
Standard delay caps may be used for delay detonation.
d. Acceptable results may be obtained by firing both rows
simultaneously, if adequate means are sufficient time for delay firing
are not available. However the resulting crater will not have the same
depth and trapezoidal shape as described above.
e. To prevent misfires from the shock and blast of the row of charges
on the enemy side (detonated first), the detonation cord mains and
branch lines of the row on the friendly side (detonated last) must be
protected by a covering of about 6 inches of earth.
3-19. Angled Road Crater Method
This method is useful against tanks traveling in defiles or road cuts
where the must approach the crater straightaway and is the most
effective cratering method. The road crater is blasted using either the
hast or deliberate cratering methods described in paragraphs 3-16 and
3-17, except the boreholes are drilled across the roadway at about a 45
degree angle as shown in figure 3-19. Because of the angle at which
tanks must attempt to cross an angled crater, they tend to slip sideways
and ride off their tracks.
3-20. Blasting Permafrost and Ice
a. BLASTING PERMAFROST.
(1) NUMBER OF BOREHOLES AND SIZE OF CHARGE. In permafrost,
blasting requires about 1 1/2 to 1 times the number of boreholes and
larger charges than those calculated by standard formulas for moderate
climates. Frozen soil, when blasted breaks into large clods 12 to 18
inches thick and 6 to 8 feet in diameter. A the charge has
insufficient force to blow these clods clear of the hole, they fall back
into it when the blast subsides. Testing to determine the number of
boreholes needed should be made before extensive blasting is attempted.
In some cases, permafrost may be as difficult to blast as solid rock.
(2) METHOD OF MAKING BOREHOLES. Boreholes are made by three
methods--use of standard drilling equipment, steam pount drilling
equipment, and shaped charges. Standard drill equipment has one serious
defect--the air holes in the drill bits freeze and there is no known
method of avoiding it. Steam point drilling is satisfactory in sand,
silt or clay, but not in gravel. Charges must be placed immediately
upon withdrawl of the steam point, otherwise the area around the hole
thaws out and plugs it. Shaped charges also are satisfactory for
producing boreholes, especially for cratering. Table 3-5 shows the size
of boreholes in permafrost and ince made by M3A1 and M2A4 shaped
charges.
(3) EXPLOSIVES. A low velocity explosive like ammonium nitrate,
satisfactory for use in arctic temperatures, should be used, if
available. The heaving quality of low velocity explosives will aid in
clearing the hole of large boulders. If only high velocity explosives
are available, charges should be tamped with water and permitted to
freeze. Unlesss high velocity explosives are thoroughly tamped, they
tend to blow out of the borehole.
b. BLASTING ICE.
(1) ACCESS HOLES. These are required for water supply and
determining the thickness of ice for the computation of safe bearing
pressures for aircraft and vehicles. As ice carries much winter
traffic, its bearing capacity must be ascertained rapidly when forward
movements are required. Small diameter access holes are made by shaped
charges. On solid lake ice, the M2A4 penetrates 7 feet and the M3A1, 12
feet. These charges will penetrate farther but the penetration
distances were tested in only ice approximately 12 feet thick. If the
regular standoff is used, a large crater formes at the top, which makes
considerable probing necessary to finde the borehole. If a standoff of
42 inches or more is used with the M2A4 shaped charge, a clean hole
without a top crater is formed. Holes made by the M2A4 average 3 1/2
inches in diameter, while those made by the M3A1 average 6 inches.
(2) ICE CONDITIONS. In the late winter after the ice has aged, it
grows weaker and changes color from blue to white. Although the
structure of ice varies and its strength depends on age, air
temperature, and conditions of the original formation, the same size and
type of crater is formed regardless of the standoff distance. If the
lake or river is not frozen to the bottom, the blown hole will fill with
shattered ice and clearing will be extremely difficult. Under some
conditions, shaped charges may penetrate to a depth much less than that
indicated in table 3-5.
(3) SURFACE CHARGES. Surface craters may be made with ammonium
nitrate cratering charges or demolition blocks. For the best effects,
the charges are placed on the surface of cleared ice and tamped on top
with snow. The tendency of ice to shatter more rapidly than soil should
be considered when charges are computed.
(4) UNDERWATER CHARGES.
(a) Charges are placed underwater by first making boreholes in
the ice with boreholes in the ice with shaped charges, and then placing
the charge below th ice. An 80-pound charge of M3 demolition blocks
under ice 4 1/2 feet thick forms a crater 40 feet in diameter. This
crater, however, is filled with floating ice particles, and at
temperatures around 20 degrees F. freezes over in 40 minutes.
(b) A vehicle obstacle may be cratered in ice by sinking
boreholes 9 feet apart in staggered rows. Charges (tetrytol or plastic)
are suspended about 2 feet below the bottom of the ice by means of cord
with sticks bridging the tops of the holes. The size of the charge
depends upon the thickness of the ice. An obstacle like this may retard
or halt enemy vehicles for approximately 24 hours at temperatures around
-24 degrees F.
3-21. Cratering at Culverts
A charge detonated to destroy a culvert not more than 15 feet deep may,
at the same time, produce an effective road crater. Explosive charges
should be primed for simultaneous firing and thoroughly tamped with
sandbags. Culverts with 5 feet or less of fill may be destroyed by
explosive charges placed in the same manner as in hasty road cratering.
Concentrated charges equal to 10 pounds per foot of depth are placed in
boreholes at 5-foot intervals in the fill above and alongside the
culvert.
3-22. Antitank Ditch Cratering
a. CONSTRUCTION. In open country, antitank ditches are constructed
to strengthen prepared defensive positions. As they are costly in time
and effort, much is gained if the excavation can be made by means of
cratering charges. To be effective, an antitank ditch must be wide
enough to stop an enemy tank. It may be improved by placing a log
hurdle on the enemy side and spoil on the friendly side. Ditches are
improved by digging the face on the friendly side nearly vertical by
means of handtools (para 3-15a).
b. DELIBERATE CRATERING METHOD. The deliberate cratering method
outlined in paragraph 3-17 is adequate for the construction of heavy
tank ditches in most types of soil.
c. HASTY CRATERING METHOD. An antitank ditch may be constructed by
placing 50 pounds of cratering explosive in 5-foot holes, and spacing
the holes at 5-foot intervals (fig 3-16). The ditch crater will be
approximately 8 feet deep and 25 feet wide.
3-23. Blasting of Ditches
In combat areas, ditches may be constructed to drain terrain flooded by
the enemy or as initial excavations for the preparation of
entrenchments. Rough open ditches 2 1/2 to 12 feet deep and 4 to 40
feet wide may be blasted in most types of soils. A brief outline of the
method is given below.
a. TEST SHOTS. Before attempting the actual ditching, make test
shots to determine the proper depth, spacing, and weight of charges
needed to obtain the required results. Make beginning test shots with
holes 2 feet deep and 18 inches apart and then increase the size of the
charge and the depth as required. A rule of thumb for ditching is to
use 1 pound of explosive per cubic yard of earth in average soil.
b. ALINEMENT AND GRADE. Mark the ditch centerline by transit line or
expedient means and drill holes along it. When a transit or hand level
is used, the grade of the ditch may be accurately controlled by checking
the hole depth every 5 to 10 holes and at each change in grade. In soft
ground, the holes may be made with a sharp punch, a quicksand punch (fig
3-20) or an earth auger. Holes are loaded and tamped immediately to
prevent cave-ins and insure that the charges are at proper depth.
Ditches are sloped at a rate of 2 to 4 feet per 100 feet.
c. METHODS OF DETONATION.
(1) PROPAGATION METHOD. By this method (fig 3-21) only one charge
is primed-- the charge placed in the hole at one end of the line of
holes made to blast the ditch. The concussion from this charge
sympathetically detonates the next charge and so on until all are
detonated. Only 50-60 percent straight commercial dynamite should be
used in this operation. The propagation method is effective, however,
only in moist or wet soils and may be effectively used in swamps where
the ground is covered by several inches of water. If more than one line
of charges is required to obtain a wide ditch, the first charge of each
line is primed. The primed hole is overcharge 1 or 2 pounds.
(2) ELECTRICAL METHOD. Any high explosive may be used in ditching
by the electrical firing method which is effective in all soils except
sand, regardless of moisture content. Each charge is primed with an
electric cap and the caps are connected in leapfrog series (para 2-6b).
Al charges are fired simultaneously.
(3) DETONATING CORD METHOD. In this ditching method any high
explosive may be used. It is effective in any type of soil, except
sand, regardless of moisture content. Each charge is primed with
detonating cord and connected to a detonating cord main or ring main
line.
d. METHODS OF LOADING.
(1) The method of loading for a deep, narrow ditch is illustrated
in figure 3-22.
(2) The relief method of loading for shallow ditches is depicted
in figure 3-23. Ditches 1 and 3 are blasted first to relieve ditch 2.
(3) Figure 3-24 shows the posthole method of loading for shallow
ditches in mud.
(4) The cross section method of loading to clean and widen ditches
is explained graphically in figure 3-25.
Section VII. LAND CLEARING CHARGES
3-24. Introduction
In military operations, construction jobs occur in which explosives may
be employed to advantage. Among these jobs are land clearing, which
includes stump and boulder removal, and quarrying. The explosives
commonly used are military and commercial dynamite and detonating cord.
The quantity of explosive used is generally calculated by rule of thumb.
Charges may be placed in boreholes in the ground under or at the side of
the target, in the target itself, or on top of the target. All charges
should be tamped or mudcapped, which is a form of light tamping.
3-25. Stump Removal
In certain military operations it may be necessary to remove stumps as
well as trees. Stumps are of two general types, tap- and lateral-rooted
(fig 3-26). Military Dynamite is the explosive best suited for stump
removal. A rule of thumb is to use 1 pound per foot of diameter for
dead stumps and 2 pounds per foot for live stumps, and if both tree and
stump are to be removed, to increase the amount of explosive by 50
percent. Measurements are taken at points 12 to 18 inches above the
ground.
a. TAPROOT STUMPS. For taproot stumps, one method is to bore a hole
in the taproot below the level of the ground. The best method is to
place charges on both sides of the taproot to obtain a shearing effect
(fig 3-26). For best results, tamp the charges.
b. LATERAL-ROOT STUMPS. In blasting later-root stumps, drill sloping
holes as shown in figure 3-26. Place the charge as nearly as possible
under the center of the stump and at a depth approximately equal to the
radius of the stump base. If for some reason the root formation cannot
be determined, assume that it is the lateral type and proceed
accordingly.
3-26. Boulder Removal
In the building of roads and airfields or other military construction,
boulders can be removed by blasting. The most practical methods are
snakeholing, mudcapping, and blockholing.
a. SNAKEHOLING METHOD. By this method, a hole large enough to hold
the charg is dug under the boulder. The explosive charge is packed
under and against the bould as shown in A, figure 3-27. For charge
size, see table 3-6.
b. MUDCAPPING METHOD. For surface or slightly embedded boulders, the
mudcapping method is very effective. The charge is placed on top or
against the side of the boulder wherever a crack or seam exists that
will aid in breakage, and covered with 10 to 12 inches of mud or clay
(B, fig 3-27). For charge size, see table 3-6.
c. BLOCKHOLING METHOD. This method is very effective of boulders
lying on the surface or slightly embedded in the earth. A hole is
drilled on top of the boulder deep and wide enough to hold the amount of
explosive indicated in table 3-6. The charge is then primed, put into
the borehole, and stemmed (C, fig 3-27).
Table 3-6. Charge Sizes for Blasting Boulders.
________________________________________________________________
! Pounds of explosive required
Boulder diameter (ft) !----------------------------------------
! Blockholing ! Snakeholing ! Mudcapping
-----------------------!-------------!-------------!------------
3 ! 1/4 ! 3/4 ! 2
4 ! 3/8 ! 2 ! 3 1/2
5 ! 1/2 ! 3 ! 6
----------------------------------------------------------------
3-27. Springing Charges
a. DEFINITION AND METHOD. A springing charge is a comparatively
small charge detonated in the bottom of a drilled borehole to form an
enlarged chamber for placing a larger charge. At times two or more
springing charges in succession may be needed to make the chamber large
enough for the final charge. Under these conditions at least 2 hours
should be allowed between firing and placing successive charges for the
boreholes to cool unless the sprung holes are cooled with water or
compressed air.
b. DETONATING CORD WICK. This is several strands of detonating cord
taped together and used to enlarge boreholes in soils. One strand
generally widens the diameter of the hole about 1 inch.
(1) A hole is made by driving a steel rod approximately 2 inches
in diameter into the ground to the depth required. According to the
rule of thumb, a hole 10 inches in diameter requires 10 strands of
detonating cord. These must extend the full length of the hole and be
taped or tied together into a "wick" to give optimum results. The wick
may be placed into the hole by an inserting rod or some field expedient.
Firing may be done electrically or nonelectrically. An unlimited number
of wicks may be fired at one time by connecting them by a detonated cord
ring main or line main.
(2) The best results from the use of the detonating cord wick are
obtained in hard soil. If successive charges are placed in the holes,
excess gases must be blown out andthe hole inspected for excessive heat.
3-28. Quarrying
Quarrying is the extraction of rock in the natural state. Militarty
quarries, generally of the open face type, are developed by the single
or multiple bench method. See TM 5-332 for detailed information.
Section III. DESTRUCTION TO PREVENT ENEMY USE
5-10. General
a. The destruction of damaged or unserviceable explosives and
demolition materials is accomplished by explosive ordnance disposal
units as specified in AR 75-14, AR 75-15, TM 9-1375-200 and FM 9-16.
b. Destruction of demolition materials, when subject to capture or
abandonment, will be undertaken by the using of arm only when, in the
judgment of the unit commander concerned, such action is necessary in
accordance with orders of, or policy established by, the Army commander.
The conditions under which destruction will be effected are command
decisions and may vary in each case, dependent upon a number of factors
such as the tactical situation, security classification of the
demolition materials, their quantity and location, facilities for
accomplishing destruction, and time available. In general, destruction
can be accomplished most effectively by burning or detonation, or a
combination of these.
c. If destruction to prevent enemy use is resorted to, explosive and
nonexplosive demolition materials must be so completely destroyed that
they cannot be restored to usable condition in the combat zone. Equally
important, the same essential components of sets and kits must be
destroyed so that the enemy cannot assemble complete ones from undamaged
components by cannibalization.
d. If destruction of demolition materials is directed, due
consideration should be given to (1) and (2) below.
(1) Selection of a site that will cause greatest obstruction to
enemy movement and also prevent hazard to friendly troops from fragments
and blast which will occur incidental to the destruction.
(2) Observation of appropriate safety precautions.
5-11. Destruction Methods
Demolition materials can be most quickly destroyed by burning or
detonation. The methods in A and B below, in order of preference, are
considered the most satisfactory for destruction of demolition materials
to prevent enemy use. For additional information on the destruction of
explosives and ammunition see TM 9-1300-206 and TM 9-1300-214.
a. METHOD No.1--BY BURNING.
(1) GENERAL. Packed and unpacked high explosive items such as
linear demolition charges, shaped demolition charges, block demolition
charges, dynamite sticks, detonating cord, firing devices, time blasting
fuse, and similar items may be destroyed quickly and effectively by
burning. Blasting caps set aside for destruction by burning must be
stacked in separate piles and not with other explosives.
(2) METHOD OF DESTRUCTION.
(a) Stack the explosives in a pile, if possible (not over 2,000
pounds to a pile), over a layer of combustible material.
(b) Pour FUEL OIL over the entire pile.
(c) Ignite the pile by means of a combustible train (excelsior
or slow-burning propellant) of suitable length and take cover
immediately. The danger area for piles being burned in the open is
calculated from the safe distances given in paragraph 5-2 but never
less than 400 meters.
WARNING. COVER MUST BE TAKEN WITHOUT DELAY, SINCE DETONATION OF THE
EXPLOSIVE MATERIAL MAY BE CAUSED BY THE FIRE.
b. METHOD No.2--BY DETONATION.
(1) GENERAL. Packed and unpacked high explosive items such as
linear demolition charges, shaped demolition charges, block demoltion
charges, dynamite sticks, detonating cord, blasting caps, firing
devices, time blasting fuse, and similar items may be destroyed by
placing them in piles and detonating them with initiating charges of
TNT, or composition C series explosives, or other explosives having
equivalent potential.
(2) METHOD OF DESTRUCTION.
(a) The explosives should be stacked in piles, if possible (not
over 2,000 pounds to a pile).
(b) Each 100 pounds of packed explosives (mine, blocks, etc.),
require a 2-pound (minimum) explosive charge to insue complete
detonation of the pile. For unpacked explosives, a 1-pound (minimum)
explosive charge for each 100 pounds is sufficient.
(c) Provide for dual priming as explained in chapter 2 to
minimize the possibility of a misfire. For priming, either a
nonelectric blasting cap crimped to at least 5 feet of time blasting
fuse or an electric cap and firing wire may be used.
(d) Detonate the charges. If primed with nonelectric blasting
cap and time blasting fuse, ignite and take cover; if primed with
electric blasting cap, take cover before firing charges. The danger
area for piles detonated in the open is calculated according to the safe
distance given in paragraph 5-2.
APPENDIX D
EXPEDIENT DEMOLITIONS
________________________________________________________________
D-1. Use of Epedient Techniques
These techniques are not presented as a replacement for the standard
demolition methods but for use by experienced blasters in special
projects. Availability of trained men, time, and material will
generally determine their use.
D-2. Shaped Charges
a. DESCRIPTION. Shaped charges concentrate the energy of the
explosion released on a small area, making a tubular or linear fracture
in the target. Their versatility and simplicity makes them effective
against many targets, especially those made of concrete or those with
armour plating. Shaped charges may be improvised (fig D-1). Because of
the many variables, such as explosive density, configuration, and
density of the cavity liner, consistent results are impossible to
obtain. Thus experiment, or trial and error, is necessary to determine
the optimum standoff distances. Plastic explosive is best suited for
this type of charge. Dynamite and molten TNT, however may be used as an
expedient.
b. PREPARATION. Almost any kind of container is usable. Bowls,
funnels, cone-shaped glasses (champagne glasses with the stem removed),
and copper, tin, or zinc may be used as cavity linerse; or wine bottles
with a cone in the bottome (champagne or cognac bottles) are excellent.
If none of these is available, a reduced effect is obtained by cutting a
cavity into a plastic explosive block. Optimum shaped charge
characteristics are --
(1) Angle of cavity = between 30 degrees and 60 degrees (most HEAT
ammunition has a 42 degree to 45 degree angle).
(2) Standoff distance = 1 1/2 x diameter of cone
(3) Height of explosive in container = 2 x height of cone measured
from base of the cone to the top of the explosive.
(4) Point of detonation = exact top center of charge. Cover cap,
if any any part of it is exposed or extends above the charge, with a
small quantity of C4 explosive.
Note. The narrow necks of bottles or the stems of glasses may be
cut by wrapping tem with a piece of soft absorbant type twine or string
soaked in gasoline and lighting it. Two bands of adhesive tape, one on
each side of the twine or string, will hold it firmly in place. The
bottle or stemm must be turned continuously with the neck up, to heat
the glass uniformly. Also, a narrow band of plastic explosive placed
around the nexk and burned gives the same resulte. After the twine or
plastic has burned, submerge the neck of the bottle in water and tap it
against some object to break it off. TAPE THE SHARP EDGES OF THE BOTTLE
TO PREVENT CUTTING HANDS WHILE TAMPING THE EXPLOSIVE IN PLACE.
D-3. Platter charge
This device utilizes the Miznay-Chardin effect. It turns a metal plate
into a powerful blunt-nosed projectile (fig D-2). The platter should be
steel (preferably round, but square is satisfactory) and should weigh
from 2 to 6 pounds.
a. CALCULATIONS. Weight of explosives = approximately the weight of
the platter.
b. PREPARATION.
(1) Pack the explosive uniformly behind the platter. A container
is not necessary if the explosive can be held firmly against the
platter. Tape is acceptable.
(2) Prime the charge from the exact rear center. Cover cap, if
any part is exposed, with a small quantity of C4 explosive to insure
detonation.
(3) Aim the charge at the direct center of the target.
c. EFFECT. The effective range (primarily a problem of aim) is
approximately 35 yards for a small target. With practive, a
demolitionist may hit a 55-gallon drum, a relatively small target, at 25
yards about 90 percent of the time.
D-4. Grapeshot Charge
This charge consists of a container, preferably a No. 10 can,
projectiles (small pieces of steel), buffer material, an explosive
charge, and a blasting cap. These are assembled as shown in figure D-3.
a. COMPUTATION. The weight of the explosive is approximately 1/4 x
the weight of the projectiles.
b. PREPARATION.
(1) Assemble the projectiles, a few inches of buffer
material-earth, leaves, wood, felt, cloth, cardboard, etc., and the
explosive charge. This should be C4, packed firmly.
(2) Prime the charge from the exact rear center. Cover the cap,
if any part is exposed, with a small quantity of C4 to insure
detonation.
(3) Aim the charge toward the center of the target.
D-5. Dust Initiator
This device consists of an explosive charge (powdered TNT or C3; C4 will
not properly mix with the incendiary), an incendiary mix (2 parts of
aluminum powder or magnesium powder to 3 parts ferric oxide), and a
suitable finely-divided organic material (dust) or a volatile fuel such
as gasoline called a surround. The dust initiator is most effective in
an inclosed space, like a box car or a warehouse or other relatively
windowless structure. At detonation, the surround is distributed
throughout the air within the target and ignited by the incendiary
material.
a. COMPUTATION.
(1) Charge size = 1 pound (1/2 explosive, 1/2 incendiary mix).
(2) Cover size = 3 to 5 pounds of each 1,000 cubic feet of target.
The one-pound charge will effectively detonate up to 40 pounds of cover.
b. PREPARATION. Powdered TNT may be obtained by crushing it in a
canvas bag. The incendiary mix must be thoroughly dispersed throughout
the explosive. A great number of dust materials may be used as cover,
among which are coal dust, cocoa, bulk powdered coffee, confectioners
sugar, tapioca, wheat flour, corn starch, hard rubber dust, aluminum
powder, magnesium powder, and powdered soap. If gasoline is used, 3
gallons is the maximum, as more will not disperse evenly in the air and
thus give poor results.
D-6. Improvised Cratering Charge
This charge is a mixture of ammonium nitrate fertilizer containing at
least 33 1/3 percent nitrogen and diesel fuel, motor oil, or gasoline at
a ratio of 25 pounds of fertilizer to a quart of fuel. The ferilizer
must not be damp. From this mixture, improvised charges of almost any
sixe or configuration can be made. Proceed as follows:
a. Pour the liquid on the fertilizer.
b. Allow the mixture to soak for an hour.
c. Place about half the charge in the borehole. Then place the
primer, a primed 1-pound block of TNT, and add the remainder of the
charge. (Never leave the charge in the borehole for a long period, as
accumulated moisture reduces its effectiveness.)
d. Detonate the charge.
D-7. Ammonium Nitrate Satchel Charge
Although the cratering charge (para D-6) is excellent, it is suitable
only for cratering. A more manageable charge may be used by mixing
ammonium nitrate fertilizer with melted wax instead of oil. The primer
is set in place before the mixture hardens.
a. PREPARATION.
(1) Melt ordinary paraffin and stir in ammonium nitrate pellets,
making sure that the paraffin is hot while mixing.
(2) Before the mixture hardens add a half-pound block of TNT or
its equivalent as a primer.
(3) Pour the mixture into a container. Shrapnel material may be
added to the mixture if desired or attached on the outside of the
container to give a shrapnel effect.
b. USE. Because the wax and fertilizer may be molded into almost any
size or shape, it may be applied to agreat many demolition projects with
satisfactory effects.
_______________________________________________________
It seems that it is "New and Improved by the U.S. Army!" (censored), chapters
1,4, almost all of 5, and at least 3 appendices have been eliminated.
I'm sorry (yeah right) about no pictures, but what was I to do?
I'd pay close attention to the Appendix D, there is a lot of useful
information in there.
'Til Next Time
Death Jester.
12/01/90
===============================================================================
/ /
/ File 06 / NIA069 /
/ World News Sept 1990-Jan 1991 /
/ Face-To-Face Publications /
/ /
International Symposium on the Prevention And Prosecution of Computer Crime
08/31/90
PR NEWSWIRE (PRN)
HAVANA, Aug. 31 /PRNewswire/ -- A group of experts from around the
world today unanimously expressed concern, at a symposium held in
conjunction with the eighth United Nations Congress on the
Prevention of Crime and Treatment of Offenders, over the lack of a
comprehensive international strategy to address the serious risks
posed by the vulnerability of computers and telecommunications to
criminal activity and reckless misuse.
"The rapid emergence of the technology and its penetration into
virtually every aspect of economic, industrial and intellectual
activity, have significantly outpaced the development of substantive
standards and norms of behavior for the responsible use of
computers," said Brian Bawden of Canada, the keynote speaker. "Yet,
the profound needs of the world community will continue to contribute
to the ready, if not eager, adoption of technological solutions."
Ulrich Sieber of Germany, an expert in the emerging field of
criminal information law, agreed. "Increasing public dependence on
computers has magnified the risk immensely," said Sieber, who pointed
out the need for a close international harmonization of applicable
law. "Inconsistent national laws and the current lack of mutual
legal assistance treaties are contributing to the creation of
`computer crime havens,' which in turn may provoke market
restrictions and national barriers to the free flow of information,"
said Sieber.
Dr. Abdulrahman al-Shenaifi of Saudi Arabia, director general of
the Saudi Arabian National Information Center, emphasized the global
character of the problems, given the development of a worldwide
information economy. "Lack of international cooperation will not
only lead to more computer-related crimes, it will imperil the free
economic development of an international information market," said
al-Shenaifi.
"It is important to realize that effective remedial action is just
as important to the economic and social interests of developing
nations as it is to the large industrialized countries," said Tamar
Oppenheimer, O.C., a former assistant secretary general of the United
Nations and the moderator of today's symposium. "It is equally
important to appreciate that action at the national level is not
sufficient to achieve the necessary results -- political borders are
largely transparent to this kind of crime and abuse, but the efforts
of law enforcement are very much governed by them. And the task is
far from simple -- over 170 sovereign states constitute the
international community."
"This is everyone's problem -- users of technology, suppliers of
technology and those who depend on its reliability without even
realizing their dependency," said Enrique Duhau of Argentina,
founder and president of two of Argentina's leading hardware and
software suppliers. "We in the technology supplier community must
take a leadership role, or we will have to accept solutions imposed
by others," said Duhau, a point amply supported in a paper by Chew
Teck Soon of Singapore, a Coopers & Lybrand partner and an expert in
information security
The day's proceedings, titled "International Symposium on the
Prevention and Prosecution of Computer Crime," will be published.
The symposium was organized by the Foundation for Responsible
Computing - Fondation pour une informatique responsable, a non-profit
membership organization established to assist in the development of
substantive national and international standards, laws, policies and
guidelines for the responsible use of computers and
telecommunications in the public and private sectors.
/CONTACT: Brian Bawden of Osler, Hoskin & Harcourt, 416-862-6407,
or Tamar Oppenheimer of the Foundation for Responsible Computing
(Austria), 43-222-725754/ 16:26 EDT
LeeMah DataCom Offers Defeated Hackers Another Chance;
Announcing The Second LeeMah Hacker Challenge
08/08/90
BUSINESS WIRE (BWR)
HAYWARD, Calif.--(BUSINESS WIRE FEATURES)--You might think a
computer security company that had successfully defeated 7,476
hackers would rest on its laurels, but LeeMah DataCom Security Corp.
is giving the international hacker community a second chance.
During its second annual LeeMah Hacker Challenge, the company is
daring all comers to try to beat its TraqNet security system by
retrieving a secret message from TraqNet-protected computers in the
offices of Coopers & Lybrand, the international accounting and
consulting firm.
LeeMah is even giving away the password. John Tuomy, president of
LeeMah, remarked, ``With most types of computer security, whether
software or hardware based, the password is all that stands between
an intruder and everything that is stored on the computer. LeeMah's
TraqNet system has several layers of security, so even with the
password, the odds against a hacker penetrating the system are one
in 72 quadrillion.''
Beginning on Aug. 22, hackers and computer enthusiasts who wish to
try their skill are invited to call either 212/307-6243 (New York),
or 415/512-7170 (San Francisco).
The password at either number is 533624. LeeMah is offering a
vacation for two to either Tahiti or St. Moritz to the first hacker
who succeeds in electronically breaking into one of the protected
computers.
Last year, in the first LeeMah Hacker Challenge, hackers were
given the password and one week to try to retrieve the secret message
stored on the computer.
This year, LeeMah has extended the contest to two weeks (Aug. 22 -
Sept. 5) and more telephone lines will be available, making it
easier to get access to the protected computer lines. The protected
computers will reside in the New York and San Francisco offices of
Coopers & Lybrand, which is overseeing the contest.
``When we announced our Challenge last year, a lot of hackers
boasted that it was going to be child's play,'' said Tuomy.
``When we beat them, some of them said it was because we only had
one phone line and they couldn't get through. Now we're giving them
their best shot. Those vacations are still waiting.''
He added, ``The problem with all the coverage of successful hacker
break-ins is that some people might get the impression that these
hackers are invincible, or that the FBI arrests of some of them will
act as a deterrent. The fact is that the government couldn't
possibley arrest all the hackers out there, and certainly cannot
guaranteee the safety of the nation's computers. We believe strongly
that computer crime can be prevented, but that businesses have to do
it themselves.''
Al Decker, Coopers & Lybrand's partner in charge of information
technology security services, added, ``Confidential information,
whether it's the specifications on a new product, a customer list, a
financial report, or a medical diagnosis, is frequently a company's
most valuable asset. Threats to information systems and
communication networks are real and they are growing. That's why, in
order to protect themselves and their customers, and to avoid severe
business damage, companies of all types must safeguard information
with the most effective means available.''
The results of the Challenge will be announced on Sept. 6.
CONTACT: Dobbin/Bolgla Associates, New York
Gina Fiering or Peter Dobbin, 212/807-1400
AFSA Testifies On Fair Credit Reporting Measures
06/12/90
PR NEWSWIRE (PRN)
WASHINGTON, June 12 /PRNewswire/ -- No new comprehensive changes
to the Fair Credit Reporting Act (FCRA) are needed, stated Kenneth
E. Hoerr, chairman and chief executive officer, USA Financial
Services, Inc., Peoria, Ill., in testimony today on behalf of the
American Financial Services Association (AFSA).
Hoerr noted that the credit reporting system in the United States
works to the benefit of consumers and creditors, and the principal
law governing credit reporting, FCRA, "still remains a balanced
approach to the area of credit reporting that has served the credit
industry and served and protected the consumer well." Hoerr
testified today before the House Banking Committee's Subcommittee on
Consumer Affairs and Coinage, on three bills introduced in the House
to amend the act (H.R. 4213, H.R. 4122, and H.R. 3740).
He said that AFSA shares the public concern about unauthorized
access to consumer credit reporting files. However, he pointed out
that current federal law relating to computer crime includes stiff
penalties for illegal access to computer files. "Before this
subcommittee considers enacting a new credit reporting law in the
interest of consumer privacy, AFSA submits that more examination is
needed as to how vigorously current laws ... are being enforced," he
said.
Hoerr also addressed the issue of prescreening -- a marketing
technique whereby computerized lists of consumers are evaluated
according to those most likely to desire and qualify for a
particular product or service. "We commend the chairman for
recognizing in H.R. 4213 that prescreening should continue," Hoerr
said. "AFSA believes that all consumers benefit from efficient
marketing techniques like prescreening through greater accessibility
to consumer credit," he added. For those consumers who do not wish
to receive such offers, Hoerr suggested that "a voluntary program
allowing consumers to opt-out of the marketing of such products may
be a workable system" and added that such a program is already
successfully operated by the Direct Marketing Association. He noted
that several national creditors are considering a voluntary program
for credit solicitations and offered to have AFSA bring together
interestd parties to discuss this concept.
To assess the level of consumer complaints relating to crediting
reporting issues, AFSA filed Freedom of Information/Freedom of
Access Acts requests with the banking or financial institution
agencies of all 50 states. Hoerr noted that the responses to date
from 31 states were included as an appendix to his testimony. In
reference to the responses received, Hoerr questioned the need for
changes to the FCRA: "We have not discovered any significant amount
of consumer complaints in this area and are confident that the
additional states not yet responding will not provide any variance
from our findings.
"In sum, there seems to be no public unhappiness with the current
system and no need for significant legislative change," he said.
AFSA is the national trade association for consumer finance, sales
finance, and diversified financial services firms that provide
credit to consumers. Its members hold one-quarter of all consumer
credit outstanding.
/CONTACT: Judy Kent of the American Financial Services
Association, 202-289-0400/ 12:15 EDT
Illinois Resident Testifies On Credit Reporting Measures
06/12/90
PR NEWSWIRE (PRN)
WASHINGTON, June 12 /PRNewswire/ -- No new comprehensive changes
to the Fair Credit Reporting Act (FCRA) are needed, stated Peoria
resident, Kenneth E. Hoerr, chairman and chief executive officer,
USA Financial Services, Inc., Peoria, Ill., in testimony today on
behalf of the American Financial Services Association (AFSA).
Hoerr noted that the credit reporting system in the United States
works to the benefit of consumers and creditors, and the principal
law governing credit reporting, FCRA, "still remains a balanced
approach to the area of credit reporting that has served the credit
industry and served and protected the consumer well." Hoerr
testified today before the House Banking Committee's Subcommittee on
Consumer Affairs and Coinage, on three bills introduced in the House
to amend the act (H.R. 4213, H.R. 4122, and H.R. 3740).
He said that AFSA shares the public concern about unauthorized
access to consumer credit reporting files. However, he pointed out
that current federal law relating to computer crime includes stiff
penalties for illegal access to computer files. "Before this
subcommittee considers enacting a new credit reporting law in the
interest of consumer privacy, AFSA submits that more examination is
needed as to how vigorously current laws ... are being enforced," he
said.
Hoerr also addressed the issue of prescreening -- a marketing
technique whereby computerized lists of consumers are evaluated
according to those most likely to desire and qualify for a
particular product or service. "We commend the chairman for
recognizing in H.R. 4213 that prescreening should continue," Hoerr
said. "AFSA believes that all consumers benefit from efficient
marketing techniques like prescreening through greater accessibility
to consumer credit," he added. For those consumers who do not wish
to receive such offers, Hoerr suggested that "a voluntary program
allowing consumers to opt-out of the marketing of such products may
be a workable system" and added that such a program is already
successfully operated by the Direct Marketing Association. He noted
that several national creditors are considering a voluntary program
for credit solicitations and offered to have AFSA bring together
interestd parties to discuss this concept.
To assess the level of consumer complaints relating to crediting
reporting issues, AFSA filed Freedom of Information/Freedom of
Access Acts requests with the banking or financial institution
agencies of all 50 states. Hoerr noted that the responses to date
from 31 states were included as an appendix to his testimony. In
reference to the responses received, Hoerr questioned the need for
changes to the FCRA: "We have not discovered any significant amount
of consumer complaints in this area and are confident that the
additional states not yet responding will not provide any variance
from our findings.
"In sum, there seems to be no public unhappiness with the current
system and no need for significant legislative change," he said.
AFSA is the national trade association for consumer finance, sales
finance, and diversified financial services firms that provide
credit to consumers. Its members hold one-quarter of all consumer
credit outstanding.
/CONTACT: Judy Kent of the American Financial Services
Association, 202-289-0400/ 13:47 EDT
NEW CRIMINAL JUSTICE MANUAL ISSUED TO HELP COMBAT COMPUTER CRIMINALS
12/01/89
PR NEWSWIRE (PRN)
[Editors Note: This is the Computer Crimes And Security Manual GOT is typing
up by chapter, Chapter 4 can be found in this issue of NIA and 1-3 in previous
NIA issues. -JD]
MENLO PARK, Calif., Dec. 1 /PRNewswire/ -- The National Institute
of Justice has published a new resource manual on computer crime in
an effort to keep auditors, security experts and criminal justice
agencies one step ahead of malicious hackers and other
high-technology criminals.
The "Criminal Justice Resource Manual on Computer Crime" provides
the latest information on ways to deter, detect, investigate, and
prosecute perpetrators of computer viruses, telephone intrusions into
computer networks, programmed fraud, computer larceny, software
piracy, and more.
Prepared by information security expert Donn B. Parker and
computer systems consultant David C. Smith of SRI International, the
350-page document replaces an SRI-produced manual that has been one
of the Justice Department's most popular publications but is now more
than 12 years old.
Using recently reported computer crime cases as illustrations, the
updated manual describes the many subsequent advances in computer
and communications technology -- and their misuse by perpetrators
ranging from juvenile hackers to career criminals and terrorists.
Of particular interest to auditors, investigators, and
prosecutors, the manual explains how to obtain valid evidence of a
crime, for example, through the design of audit logs that will
produce records that hold up in court.
The manual also includes detailed descriptions of the newest
federal and state laws on computer crime; a glossary of terminology;
and recommendations for fostering multidisciplinary cooperation and
reporting of suspected computer crimes.
A broad-based research and consulting organization, SRI houses one
of the world's leading consultancies on information security and
computer crime. It also operates the International Information
Integrity Institute, which helps 50 of the world's largest
corporations develop effective information security practices.
The new computer crime manual was produced for the U.S. Department
of Justice by SRI under subcontract to Abt Associates.
To order the new manual, write to the National Institute of
Justice, Box 60900, Rockville, Md., 20850. Or call, 800-851-3420 or
301-251-5500. Ask for: "Computer Crime: Criminal Justice Resource
Manual," NCJ 118214. $16.50.
/CONTACT: Suzanne Dillon of SRI International, 415-859-2304/ 17:27EST
Biometric Cops: High Tech Securit Guards are Putting a New Lock on Security
10/13/89
BUSINESS WIRE (BWR)
SANTA ANA, Calif.--(BUSINESS WIRE)--Viruses, worms, hackers --
intruders who forced entry into vulnerable computer stystems cost
businesses more than $500 million last year in the United States
alone, according to the Los Angeles-based National Center for
Computer Crime Data.
That's a statistic likely to increase dramatically as computer
usage continues to escalate.
To the rescue, though, is a new breed of security guard, armed
with biometric technology, to restrict access to everything from
corporate data bases and secured areas to cold cash and FAX machines.
And, the phrase ``hands up|'' suddenly takes on new meaning to make
sure who's who.
Biometrics are the physical human traits that make people unique.
To verify a person's identity, biometric cops can measure hand
shape, fingerprints, voice patterns, retina geometry, signature
dynamics and keystroke rhythms -- all virtually foolproof
informants.
To be sure, biometric security is still in its infancy with less
than two dozen companies in the United States, Europe and Japan
actively marketing products. Yet, industry watchers predict the
market will exceed $25 million by 1991, rocketing along at a 40
percent annual growth rate.
Beaming Science Fiction Down to Earth
It's thought the Greeks, circa 2,000 B.C., were the first to bar
the door with lock and key. Now, 4,000 years later, traditional
locking devices still comprise a majority of the multibillion dollar
access control systems market around the world.
True, today's keys might be magnetic-striped tokens or
microchip-embedded ``smart'' cards. But, just as the Greeks of
yesteryear must have discovered to their dismay, keys -- technology
notwithstanding -- can be lost, stolen or borrowed. Open sesame|
Not a problem aboard the Starship Enterprise. The vehicle's
computer would verify Mr. Spock's handprint before allowing him
access to its secrets. Now, back to the future and down to earth,
examining physical hand characteristics is one of six currently
available biometric technologies that offer near fail-safe identity
verification for subsequent access:
Hand geometry measures finger length, skin translucency, palm
thickness and shape;
Fingerprint systems analyze the unique ridges, loops and
bifurcations of finger and thumb topology;
Retina scans read the size, location and pattern of blood vessels
in the back of the eye;
Signature dynamics tracks the motions used in the writing process,
rather than the signature itself;
Keystroke analysis compares the individual patterns and rhythms of
typing repetitive character groups;
Voice verification maps the actual physiology that produces
speech,
not merely sounds or pronunciation.
In all cases, these biometric portraits are captured by sensor
devices, converted digitally into algorithms and compared with
pre-stored authorized profiles. Access is denied unless a match is
made. Additionally, a detailed audit trail automatically documents
all the particulars.
Not Being There
Most of these technologies require physical presence, contact or,
at least, proximity: the hand on a sensor pad, the eye into a
scanner, fingers over a keyboard. Only one, voice verification,
offers the opportunity for identification and access from remote
locations.
Indeed, voice verification can handle physical access control for
buildings, vaults, computer terminals of the executive washroom.
But, its added value, particularly in today's ``telecommunicating''
world, is in not being there.
In fact, it's incalculable how much business is conducted by
telephone from the desk, from phone booths, from cars and, for that
matter, from briefcases. For a rapidly growing number of instances,
it's crucial to know exactly who's on the line: bank fund
transfers, confidential corporate information, stock and commodity
trades or computer access, just to name a few. And the horror
stories abound, healined by teenaged hackers, computer viruses,
mountains of junk FAX mail and electronic embezzlement.
Existing telephone security methods consist primarily of passsword
and dialback systems. But just like keys, passwords easily can fall
into the wrong hands. Dialback procedures only work when the caller
always originates contact from the same location. Neither,
furthermore, keeps fail-safe records of each transaction, completed
or not.
Voice Verification Speaks Out
Until now, voice verification security has been limited to
dedicated, stand-alone systems confined to local sites. Used
primarily to police door entry and exit, these localized systems
compete with other biometrics such as hand, fingerprint and retinal
scanners, as well as with traditional badge readers and the old
standby, armed guards.
However, Ver-A-Tel, from Alpha Microsystems, Santa Ana, Calif.,
took a giant step forward as the only commercially available
biometric security system that can be used over standard dial-in
telephone lines. A typical Ver-A-Tel microcomputer-based system
handles as many as 5,000 callers at just about $4 each, connects to
virtually any PBX (private branch exchange) and scores 99.88 percent
accuracy.
With Ver-A-Tel, callers need enroll only once by simply recording
their voices -- using a brief phrase of their choice -- over a
standard telephone. Then, when access is sought, the PC-AT
compatible personal computer scans and analyzes the caller's voice
and compares it to the authorized vocal pattern on file.
(Incidentally, Ver-A-Tel automatically adjusts for long-term changes
in the users' voices.)
Uniquely, enrollment, access request and verification occur over
local or long-distance telephone lines.
When verification is successful, the caller gets through --
directly or to one of nine pre-selected extensions that could be a
computer terminal, a FAX machine, an encryption device or a
higher-security telephone. The answering person or device is told
the caller has been verified. If the caller can't be verified after
three attempts, Ver-A-Tel politely disconnects and documents the
attempt.
Alpha Micro's Ver-A-Tel produces a comprehensive audit trail,
including who was verified and when, rejections, where the caller
was transferred, busy signals, whether a modem was detected, or if
someone answered by voice. In addition, the centralized access
control feature enables administrators to instantly remove
authorization regardless of caller location.
For guarding secured areas on site, Ver-A-Tel centrally controls
as many as 250 door locks connected over existing telephone wiring.
In addition, physical access authorization can be integrated with
the dial-in enrollment database to effectively and efficiently
consolidate the entire security system. The result? A unified force
of caller-friendly biometric cops on the beat armed appropriately for
the Electronic Age.
CONTACT: Alpha Microsystems, Santa Ana
Mike Grimes, 714/641-6266
or
Gary Nelson, 714/641-6275
or
Hill and Knowlton, Newport Beach
Michaela Brohm, 714/752-1106
Virus Maker Who Hit NASA Computers May be Probed
Credit: SPECIAL DALLAS MORNING NEWS
12/31/90
Toronto Star (TOR)
Edition: HOLIDAY
Section: BUSINESS TODAY
Page: B3
Origin: DALLAS
(Copyright The Toronto Star)
--- Virus maker who hit NASA computers may be probed ---
DALLAS (Special) - The U.S. space agency has asked Dallas
authorities to investigate and try to prosecute a former
Electronic Data Systems Corp. employee suspected of creating a
computer virus that attacked hundreds of government, university,
business and even congressional computers, police have reported.
Since 1988, the widespread electronic bug called Scores has
infected and wiped out information in Apple Macintosh personal
computers used by the National Aeronautics and Space
Administration, the Environmental Protection Agency and other
government agencies.
If Dallas authorities believe the evidence is sufficient, the
suspect could be charged with a third-degree felony under the
state's five-year-old computer crime law.
NASA investigators believe a disgruntled employee of EDS, a Plano,
Texas-based computer services and data processing firm, created
the Scores virus, planted it in his employer's computers and then
resigned before the infection broke out.
New Crime Busters Tote Calculators
Credit: CP
12/31/90
Toronto Star (TOR)
Edition: HOLIDAY
Section: BUSINESS TODAY
Page: B5
Origin: WINNIPEG
(Copyright The Toronto Star)
--- New crime busters tote calculators ---
WINNIPEG (CP) - Forensic accountant.
The phrase crops up with increasing frequency in stories about
corporate crime or business bungling and you can forget the
bean-counter stereotype about a life of bottom-line boredom.
The exploits of forensic accountants read like a hit television
show, as they nail fraud artists, conduct autopsy-like audits to
unravel money-laundering schemes and act as star witnesses in
cases that get headlines.
Take, for instance, Michael Mumford, manager of the Lindquist
forensic and investigative accounting practice for Peat Marwick
Thorne in Winnipeg.
Late one evening he gets the call that his help is needed in a raid
on a Great Lakes commercial fishing operation.
The next morning, there he is, armed with his calculator alongside
real gun-toting crime busters about to storm the fishing lodge.
"I think I've got the sexiest side of it," Mumford says of his
niche in the accounting world.
"This is definitely not a scenario of what an accountant normally
does."
Applying accounting knowledge to legal problems is not new but the
term forensic accountant is still far from a household phrase.
Even Mumford says he had to ask what it was when he first heard the
term in 1985 and he still has to explain the nature of his work to
his colleagues at the firm.
"Forensics has been around as long as accounting," says Alan
Martyszenko of Price Waterhouse's financial services group.
"But the term is relatively new. It used to be you were an
investigative accountant."
No matter what you call them, essentially what you get when you
call on a forensic accountant is a combination of detective and
auditor, who will come up with the story behind the numbers.
Peat Marwick Thorne hypes its forensic team with a catchy case
study entitled Bloodhounds of the Bottomline.
"We try and shed some light and find out what really occurred,"
Mumford says.
Insurance claims, regulatory matters, conflicts of interest,
shareholder disputes or the smell of kickbacks all draw the
forensic accountant.
"Every case is different," says Walter Dubowec, managing partner of
Deloitte & Touche.
"If you have a nose for that kind of work you can zero in and look
past the forest for what needs to be done."
For forensic accountants, what needs to be done is to provide the
kind of information and analysis that will stand up in court.
That's where the word forensic - meaning of or used in courts of
law - comes in.
Inspector Hank Moorlag of the RCMP commercial crime section in
Winnipeg suggests their importance cannot be overemphasized in
some cases, such as the recent charges of illegal trading that
rocked the Winnipeg Commodity Exchange, where explaining the
numbers is what really counts.
Mumford says he sometimes feels like Sherlock Holmes.
Angry Former Employee Probed In Computer Virus Case
Credit: Associated Press
12/29/90
HOUSTON CHRONICLE (HOU)
Edition: 2 STAR
Section: A
Page: 28
Origin: DALLAS
(Copyright 1990)
DALLAS - A man suspected of creating a computer virus that
infected personal computers at NASA and other government agencies is
being investigated by the Dallas police, officials said.
The unidentified suspect, who has not been arrested, is a
disgruntled former employee of Electronic Data Systems Corp., police
Sgt. Gary White told the Dallas Times Herald. EDS is based in
Dallas.
White said the suspect, who resigned from EDS shortly before the
virus broke out, could be charged with a third-degree felony under
the Texas computer crime law.
Police are investigating the suspect and will decide in late
January or February whether to file charges using evidence turned
over by NASA investigators, White said.
``At this point we're just gathering as much information as we
can on who has been infected, looking over case reports, seeing if it
can be prosecuted under state law,'' White said.
Federal authorities decided the case could be better prosecuted
at the local level because of difficulty in proving the suspect's
intent to contaminate government computers.
The virus, known as Scores, was among the first in the late 1980s
to draw attention to the susceptibility of government computer
networks to remote tampering.
The program, which affects only MacIntosh computers, lies dormant
before gradually destroying files, systems and hard disks.
The virus attacked NASA computers in Washington, Maryland and
Florida for five months in 1988. It also attacked computers at the
Environmental Protection Agency, the National Oceanic and Atmospheric
Administration and the U.S. Sentencing Commission.
NASA and FBI investigators traced the virus to EDS because it was
designed to attack two programs used exclusively by the company.
``It was by no means one of the more destructive viruses. It was
widespread,'' said John McAfee, chairman of the Computer Virus
Industry Association.
White said the virus has been purged from government computers
but continues to infect private systems.
``You can go in and erase them out of your system, but somebody
always has a disk in a desk drawer or somewhere they haven't used for
a while,'' White said. ``They don't think and stick it back in.''
Prosecution of Computer Virus Creator Urged
Credit: Dallas Morning News
12/29/90
The San Diego Union and Tribune (SDU)
Pub: UNION
Edition: 1,2,3,4,5,6
Section: BUSINESS
Page: D-1
Origin: DALLAS
(Copyright 1990)
DALLAS -- The National Aeronautics and Space Administration has asked
Dallas authorities to investigate and try to prosecute a former
Electronic Data Systems Corp. employee suspected of creating a
computer virus that attacked hundreds of government, university,
business and even congressional computers, police said yesterday.
Since 1988, the widespread electronic bug called Scores has infected
and wiped out information in Apple Macintosh personal computers used
by NASA, the Environmental Protection Agency, the National Oceanic
and Atmospheric Administration and the U.S. Sentencing Commission.
Mainly by way of publicly accessible electronic bulletin boards, the
infection spread to computers in universities and U.S. and European
companies. The virus destroyed files, made systems shut down or
"crash" or ruined hard disks that store valuable data and a variety
of programs such as word processing, spreadsheets or graphics.
"It's even gotten into some of the congressional computers used in
Washington, D.C., and in the home (district) states," said Dallas
police Sgt. Gary White.
White is one of two officers who will investigate the case if the
Dallas Police Department gives the OK.
The suspect, whose identity has not been released, could be charged
with a third-degree felony under the state's 5-year-old computer
crime law.
NASA investigators believe a disgruntled employee of EDS, a suburban,
Plano, Texas-based computer services and data processing firm,
created the Scores virus, planted it in his employer's computers and
then resigned before the infection broke out.
Suspect Targeted in Computer Virus Case
Credit: AP
12/29/90
AUSTIN AMERICAN-STATESMAN (AAS)
Edition: FINAL
Section: CITY/STATE
Page: C3
Origin: DALLAS
(Copyright 1990)
DALLAS (AP) - A man suspected of creating a computer virus that
infected personal computers at NASA and other government agencies is
being investigated by the Dallas police, officials said.
The unidentified suspect, who has not been arrested, is a former
employee of Electronic Data Systems Corp., police Sgt. Gary White
told the Dallas Times Herald. EDS is based in Dallas.
White said the suspect, who resigned from EDS shortly before the
virus broke out, could be charged with a third-degree felony under
Texas computer crime law.
Police are investigating and will decide in late January or
February whether to file charges using evidence turned over by NASA
investigators, White said.
Federal authorities decided the case could be better prosecuted
at the local level because of difficulty in proving the suspect's
intent to contaminate government computers.
The virus, known as Scores, was among the first in the late 1980s
to draw attention to the susceptibility of government computer
networks to remote tampering.
The program, which affects only Macintosh computers, lies dormant
before gradually destroying files, systems and hard disks.
The virus attacked NASA computers in Washington, Maryland and
Florida for five months in 1988. It also attacked computers at the
Environmental Protection Agency, the National Oceanic and Atmospheric
Administration and the U.S. Sentencing Commission.
NASA and FBI investigators traced the virus to EDS because it was
designed to attack two programs used exclusively by the company.
"It was by no means one of the more destructive viruses. It was
widespread," said John McAfee, chairman of the Computer Virus
Industry Association.
White said the virus has been purged from government computers,
but continues to infect private systems.
Former EDS Employee Suspected of Planting Federal Computer Virus
Credit: AP
12/29/90
AUSTIN AMERICAN-STATESMAN (AAS)
Edition: CENTEX
Section: CENTEX
Page: C3
Origin: DALLAS
(Copyright 1990)
DALLAS (AP) - A man suspected of creating a computer virus that
infected personal computers at NASA and other government agencies is
being investigated by the Dallas police, officials said.
The unidentified suspect, who has not been arrested, is a former
employee of Electronic Data Systems Corp., police Sgt. Gary White
told the Dallas Times Herald. EDS is based in Dallas.
White said the suspect, who resigned from EDS shortly before the
virus broke out, could be charged with a third-degree felony under
Texas computer crime law.
Police are investigating and will decide in late January or
February whether to file charges using evidence turned over by NASA
investigators, White said.
Federal authorities decided the case could be better prosecuted
at the local level because of difficulty in proving the suspect's
intent to contaminate government computers.
The virus, known as Scores, was among the first in the late 1980s
to draw attention to the susceptibility of government computer
networks to remote tampering.
The program, which affects only Macintosh computers, lies dormant
before gradually destroying files, systems and hard disks.
The virus attacked NASA computers in Washington, Maryland and
Florida for five months in 1988. It also attacked computers at the
Environmental Protection Agency, the National Oceanic and Atmospheric
Administration and the U.S. Sentencing Commission.
NASA and FBI investigators traced the virus to EDS because it was
designed to attack two programs used exclusively by the company.
"It was by no means one of the more destructive viruses. It was
widespread," said John McAfee, chairman of the Computer Virus
Industry Association.
White said the virus has been purged from government computers,
but continues to infect private systems.
Bulgarians Adept at Breeding Lethal Computer Bugs // U.S. Military
Network Among Those Attacked by Virus
Byline: Chuck Sudetic
Credit: New York Times
12/25/90
STAR TRIBUNE: NEWSPAPER OF THE TWIN CITIES Mpls.-St. Paul (MSP)
Edition: METRO
Section: NEWS
Page: 18B
Origin: Sofia, Bulgaria
(Copyright 1990)
Bulgaria has become the breeding ground of some of the world's most
lethal computer viruses, programs that are maliciously designed to
spread through computer memories and networks and at times destroy
valuable stored information such as bank and medical records.
"We've counted about 300 viruses written for the IBM personal
computer; of these, 80 or 90 originated in Bulgaria," said Morton
Swimmer of Hamburg University's Virus Test Center, which specializes
in diagnosing and curing Eastern European computer viruses.
"Not only do the Bulgarians produce the most computer viruses,
they produce the best."
One Bulgarian virus, Dark Avenger, has infected U.S. military
computers, said John McAfee, who runs the Computer Virus Industry
Association, which is based in Santa Clara, Calif., and tracks
viruses for computer hardware and software companies.
"I'm not saying that any super-secure computers have been
infected," he said. "But the U.S. Defense Department has about
400,000 personal computers and anyone who has that many machines has
a 100 percent probability of being hit."
"It is causing some people in sensitive places a lot of
problems," a Western diplomat said, "and they are very reluctant to
admit they have them."
"I would say that 10 percent of the 60 calls we receive each
week are for Bulgarian viruses and 99 percent of these are for Dark
Avenger," McAfee said, adding that the virus has attacked computers
belonging to banks, insurance and accounting companies,
telecommunications companies and medical offices.
"I've had a lot of calls from Frankfurt," Swimmer said. "One
bank was very nervous about it, but I can't reveal its name for
obvious reasons."
Several experts say the spread of the Bulgarian viruses is less
the result of activities by the secret police than it is the
consequence of having developed a generation of young Bulgarians
whose programming skills found few outlets beyond hacking
interventions.
A decade ago, the country's Communist leaders decided to make
Bulgaria an Eastern-bloc Silicon Valley, said Vesselin Bontchev, a
Bulgarian computer specialist.
Bulgarian factories began producing computers and the government
placed them in workshops, schools and institutes. Many computers,
however, stood idle because people did not know how to apply them or
lacked an economic interest in doing so.
"People took office computers home and their children began
playing on them," he said, adding that buying a private computer was
almost impossible.
These children quickly acquired software-writing skills, but had
little or no chance to apply them constructively, he said.
They began bootlegging copyrighted Western software, especially
computer games, by overriding devices written into the software to
prevent it from being copied. Then they started altering the
operating systems that drive the computer itself.
"From there it was one small step to creating viruses that
attack files when they are acted on by the operating system," he
said.
Bontchev estimated there are only about a dozen young Bulgarian
computer programmers who have written the viruses that have caused
all the trouble.
"Computer hackers here write viruses to show who is who in
computer science in Bulgaria, to find a place in the sun," said Slav
Ivanov, editor of a Bulgarian computer magazine. "The young computer
people just don't rank in our society. They don't receive enough
money."
The average wage of a software writer in Bulgaria is about $30 a
month, Bontchev said.
One virus designer, however, acknowledged that revenge was also
a factor.
"I designed my first computer virus for revenge against people
at work," said Lubomir Mateev, who helped write a nondestructive
virus known as Murphy, which shares many of Dark Avenger's tricks.
"Our first virus made all the computers at work send out a noise
when they were switched on."
Mateev, 23, said he collaborated with Dark Avenger's designer
last spring on a new virus that is harder to diagnose and cure
because it is self-mutating.
"Dark Avenger's designer told me he would take a job as a
janitor in a Western software firm just to get out of Bulgaria," he
said. Attempts during several months to get in touch with Dark
Avenger's creator proved fruitless.
For now, Bulgaria's computer-virus designers can act with
complete legal immunity.
"We have no law on computer crime," said Ivanov, whose magazine
offers free programs that cure known Bulgarian viruses. "The police
are only superficially interested in this matter."
Bulgaria's secret-police computers have also been infected, said
a well-placed Bulgarian computer expert.
Dark Avenger has also spread to the Soviet Union, Britain,
Czechoslovakia, Poland and Hungary, Bontchev said, adding, "I've
even had one report that it has popped up in Mongolia."
"The Dark Avenger is the work of a Sofia-based programmer who is
known to have devised 13 different viruses with a host of different
versions," Bontchev said. "He is a maniac."
Bontchev said he was almost certain Bulgaria's government was
not involved with Dark Avenger.
"A computer virus cannot be used as a weapon because it cannot
be aimed accurately and can return like a boomerang to damage
programs belonging to the creator himself," he said. "It can be used
only to cause random damage, like a terrorist bomb."
Unlike less-infectious viruses, Dark Avenger attacks computer
data and programs when they are copied, printed or acted on in other
ways by a computer's operating system, Bontchev said. The virus
destroys information every 16th time an infected program is run.
A virus can spread from one computer to another either on floppy
disks or through computer modems or computer networks, he said. Many
viruses are spread at computer fairs and through computer
bulletin-board systems where enthusiasts exchange information over
the telephone.
Legislation on computer crime will be introduced in parliament
once a criminal code is adopted, said Ilko Eskanazi, a parliamentary
representative who has an interest in the virus issue.
"We are now seeing viruses emerging on entirely new ground in
Eastern Europe," Bontchev said.
"Things may get much worse before they improve," he warned. "The
first law of computer viruses is that if a virus can be made, it
will be. The second law is that if a computer virus cannot be made,
it will be anyway."
CALIFORNIA
12/14/90
USA TODAY (USAT)
Edition: FINAL
Section: NEWS
Page: 10A
Category: Across the USA
(Copyright 1990)
SAN FRANCISCO - Auto insurance rate cuts for good drivers, rate
hikes up to 40% for others were OK'd by Insurance Commissioner Roxani
Gillespie. Insurers may use new rates in '91 - ending freeze in
place since '89 passage of Proposition 103 insurance rules. ...
BERKELEY - 386 absentee ballots in city's mayoral race cannot be
counted because they arrived day after Dec. 4 election, judge ruled.
Loni Hancock beat challenger Fred Weekes by 77 votes. ... HAYWARD -
Peace activist Susan Rodriguez, 36, was convicted of felony
vandalism, burglary for using sledge hammer to smash computers at
Physics Intl. Firm does defense work, officials said.
IDAHO
12/14/90
USA TODAY (USAT)
Edition: FINAL
Section: NEWS
Page: 10A
Category: Across the USA
(Copyright 1990)
BOISE - Salmon protection on Columbus, Snake rivers is main goal of
new 30,000-member coalition of business, environmental, sport groups,
coordinator said. Group will push for changes at federal dams to
stop salmon deaths. ... NAMPA - Zilog Inc. - computer chip maker -
will pay $3,959 fine for violating labeling laws on hazardous waste
containers, Dept. of Health and Welfare spokesman said.
Bulgaria Has One World-Class Export
Byline: Chuck Sudetic
Credit: NEW YORK TIMES
12/26/90
Ottawa Citizen (OTT)
Edition: Final
Section: NEWS
Page: A2
Category: NEWS
Origin: SOFIA, Bulgaria
(Copyright The Ottawa Citizen)
--- Bulgaria has one world-class export ---
Not only do the Bulgarians produce the most computer viruses,"
says a Hamburg University expert on the matter, "they produce the
best."
Morton Swimmer and his Virus Test Centre have counted about 300
programs that attack IBM personal computers -- spread through
their computer memories and, at times, destroy valuable
information stored there, like bank or medical records. Eighty or
90 of them originated in Bulgaria.
The most notable, called Dark Avenger, has attacked banks,
insurance and accounting companies, telecommunications firms and
medical offices.
It has even infected American military computers, according to
John McAfee, who runs the Computer Virus Industry Association in
Santa Clara, Calif.
"I'm not saying that any super-secure computers have been
infected, but the U.S. Defence Department has about 400,000
personal computers, and anyone who has that many machines has a
100-per-cent probability of being hit."
Perhaps it wasn't the most ingratiating way of doing it, but
Bulgaria has at last shown Western countries it can compete with
them on their own terms.
Hackers without a cause
Experts say Bulgarian viruses don't spring from some secret-police
plot but are the consequence of the country's former Communist
leaders having developed a generation of young people with great
programming skills but few outlets beyond hacking.
A decade ago, Bulgaria decided to make itself into the East bloc's
Silicon Valley, says Vesselin Bontchev, a Bulgarian computer
specialist.
Factories began churning out computers, and the government
introduced them into workshops, schools and institutes. Many of
them, however, stood idle because people did not know how to apply
them or lacked an economic interest in doing it.
So, "people took office computers home, and their children began
playing on them," Bontchev says. These children quickly acquired
software-writing skills, but had little or no chance to apply them
constructively.
They began bootlegging copyrighted Western software, especially
computer games, by overriding devices written into the software to
prevent it from being copied. Soon they were altering the
operating systems that drive the computer itself.
"From there it was one small step to creating viruses that attack
files when they are acted on by the operating system," Bontchev
says.
He estimates no more than a dozen young Bulgarian computer
programmers are responsible for the viruses that have caused all
the trouble.
"Computer hackers here write viruses to show who is who in
computer science in Bulgaria, to find a place in the sun," says
Slav Ivanov, editor of a Bulgarian computer magazine. "The young
computer people just don't rank in our society. They don't
receive enough money."
The average wage of a software writer in Bulgaria is about $30 a
month, Bontchev says.
One virus designer, however, says that revenge plays a large part
in Bulgaria's viral productivity.
"I designed my first computer virus for revenge against people at
work," says Lubomir Mateev, who helped write a non-destructive
virus known as Murphy, which shares many of Dark Avenger's tricks.
"Our first virus made all the computers at work send out a noise
when they were switched on."
Mateev, 23, says he collaborated with Dark Avenger's designer last
spring on a new virus that is harder to diagnose and cure because
it is self-mutating.
"Dark Avenger's designer told me he would take a job as a janitor
in a Western software firm just to get out of Bulgaria," he says.
Attempts during several months to get in touch with Dark Avenger's
creator proved fruitless.
Bulgaria's secret-police computers have also been infected, says a
well-placed Bulgarian computer expert, who spoke on condition of
anonymity and refused to elaborate.
Dark Avenger has spread to the Soviet Union, Britain,
Czechoslovakia, Poland and Hungary, Bontchev says. "I've even had
one report that it has popped up in Mongolia."
He is almost certain Bulgaria's government had nothing to do with
Dark Avenger's success.
"A computer virus cannot be used as a weapon because it cannot be
aimed accurately and can return like a boomerang to damage
programs belonging to the creator himself," he says. "It can be
used only to cause random damage, like a terrorist bomb."
Unlike less infectious viruses, Dark Avenger attacks computer data
and programs when they are copied, printed or acted on in other
ways by a computer's operating system, Bontchev says. The virus
destroys information every 16th time an infected program is run.
There's no law against it
For now, Bulgaria's computer virus designers can act with complete
legal immunity.
"We have no law on computer crime," says Ivanov, whose magazine
offers free programs that cure known Bulgarian viruses. "The
police are only superficially interested in this matter."
Legislation on computer crime will be introduced in parliament
once a criminal code is adopted, says Ilko Eskanazi, a
parliamentary representative who has taken an interest in the
virus issue.
"We are now seeing viruses emerging on entirely new ground in
Eastern Europe," Bontchev says.
"Things may get much worse before they improve," he warns. "The
first law of computer viruses is that if a virus can be made, it
will be. The second law is that if a computer virus cannot be
made, it will be anyway."
ILLUSTRATION: AP/Pat Lyons/ COMPUTER VIRUSES
County's FBI Staff Keeps Up With Crime // Work Now Revolves Around
Fraud and Computer Cases
Byline: Steve Eddy:The Orange County Register
12/23/90
THE ORANGE COUNTY REGISTER (OCR)
Edition: EVENING
Section: METRO
Page: b01
Origin: SANTA ANA, CA
TX The walls of the Orange County office of the FBI feature the usual
mug shots of wanted fugitives -- kidnappers, terrorists, bank
robbers.
But there are other photographs too, annual "team photo" shots of
the office staff taken over the past dozen years.
Each picture has more smiling faces than the year before.
As crime has evolved into high technology, massive investment
swindles and international terrorism, the bureau has evolved with it.
What was once a one-man cubbyhole in the 1950s is now the largest FBI
satellite office in the nation, with more than 60 full-time special
agents and 25 support personnel.
Gone, too, are the "do everything" special agents of the '50s and
'60s, who have been replaced by specialists.
"We tended to do a little bit of everything," said Jim Conway, 63,
who went to work for the FBI in 1952 and moved to the Santa Ana
office in 1967. "There were eight or nine agents assigned to the
office and no clerical help at all. We all sat in one room and got
to know each other very well. I have been to (the current
headquarters) a couple of times and it boggles my mind."
While FBI agents in Orange County still do their share of chasing
down bank robbers, drug dealers and other criminals, more than half
of the workload involves fraud and computer crime.
The expansion reflects a greater focus on white-collar crime, said
Jim Annes, recently retired supervisor of the Santa Ana office, who
now works for a private security firm.
Annes said that emphasis started with the Carter administration,
as the demographics of Orange County were changing.
"There were lots of financial centers going up," Annes said.
"Orange County began attracting a lot of flashy con men."
The mid-1980s brought agents the largest bank fraud case in US
history. Bank of America alone lost an estimated $95 million in a
scheme involving sale of fraudulent mortgage loans. It took six
years to investigate and prosecute the case.
"There are agents who devoted 25 percent of their careers to that
one," Annes said.
New investigations of fraud, including the continuing Lincoln
Savings & Loan investigation, have taxed local FBI agents. Help is
on the way.
Bucky Cox, current senior supervisory resident FBI agent, said a
"significant increase" in white-collar-crime staffing is expected
within the next few months, although the exact number of new
personnel is not known.
The local office continues to devote resources to bank robbery,
drugs, organized crime, counterterrorism and other matters.
Cox said terrorism may be foreign or domestic.
"In domestic terrorism, we look at organizations who have espoused
violence as a group, or are involved in racial incidents," he said.
Foreign terrorism hit home in 1985, when a bomb killed
Arab-American activist Alex Odeh in his Santa Ana office. The FBI
investigated and identified a former Jewish Defense League member as
a suspect. The man, residing in Israel, has not been formally
charged.
Counterintelligence comes into play because of Orange County's
huge defense industry -- with plenty of technical secrets to be
stolen by foreign agents.
The basic job of FBI agents is to conduct interviews and present
criminal cases to the US Attorney's Office for prosecution.
Often, agents are in contact with their counterparts in other
parts of the nation. Cox said that was the situation last month when
three teen-age girls were kidnapped from a Michigan township by two
men.
One of the suspects, David Alan House, 33, was a former Orange
County resident.
"It started with a late-night call from a supervisor in Michigan
to my house," Cox said. "He said it (looked) like Orange County was
going to play an important part in the case."
On his way to work the next morning, Cox got a call on his car
phone and learned that, as of midnight, the pair was in Las Vegas.
By this time, all three victims had been located.
One of the three kidnapped teen-agers was found bound, but
unharmed, in a Las Vegas hotel room. The other two were released in
Chicago.
"It was obvious that (the kidnappers) were coming here," Cox said.
"We had agents out on the streets all that day checking places where
he had lived and worked, talking with close associates, looking in
bars he used to frequent. That's the kind of thing you do -- talk to
people who will tell you that the guy is likely to go to
such-and-such a place or see such-and-such a person."
That same evening, Nov. 27, House was arrested outside a Santa
Ana towing company where he once worked. He apparently had come
there to see his former boss. The second suspect still is being
sought.
Phil Hanlon, now 66, joined the FBI in 1951, serving in various
locations before being assigned to the Santa Ana office in 1963. He
retired in 1978.
In earlier days, Hanlon and other retired agents said, the thrust
of work included bank robbery and rounding up military deserters.
"It was a different world then," Hanlon said. "People wanted to
come here because of the rural atmosphere. It was a much less
complicated existence. You didn't have the narcotics element, the
computer crime."
"Nowadays, crooks are slick -- they're smart in the brain," said
retired Special Agent Bill Carroll, who worked in the Santa Ana
office from 1963 to 1978. More agents than ever spend their days
poring over records of a failed bank.
That wasn't always so, Carroll recalled.
"One time we were investigating an unlawful flight case and had
been looking for this guy for about a month," Carroll said. "He was
labeled armed and dangerous and said he would never be taken alive.
We got a tip he was going to go see his girlfriend in Laguna Beach.
"Sure enough, his car drove up in front of her house and she got
in," Carroll said. "We followed, and he drove into this empty
parking lot. We sort of snuck up on them, and he was, well ... they
were having sex in there. He had a gun on the floor, but no chance
to get to it."
In his day, Carroll said, "Everybody basically had to know
everybody else's work. You had to be able to handle a real broad
spectrum of cases. Things weren't as complex as they are now."
Today, the heavy concentration on white-collar crime has attracted
a new breed of agents -- young attorneys and certified public
accountants who possess skills that are essential to untangling the
intricate web of fraud, Cox said.
Unfortunately, he said, many don't stay long, principally for
financial reasons.
An FBI agent right out of the training facility at Quantico, Va.,
has a starting pay of about $28,000 a year, moving to $44,000 within
about three years. Current top base pay for a journeyman agent is
$57,650. Cox said that scale puts FBI agents in the bottom 5 percent
of police agencies in Southern California.
"You don't come in expecting to be well-paid," Annes said.
"You'll have enough money for a steak and a beer, but you're always
going to be counting the pennies. If money were the object, nobody
would be in the FBI."
Some of the appeal, Cox said, comes from actual working
conditions.
"Special agents begin work in a suit and tie," Cox said. "They
aren't going to go out in a patrol car. They probably won't get spat
on or have to roll around in the street with a drunk. They don't
have to work in a jail. There are opportunities to travel."
1st Computer Pirate Convicted In Quebec Under Criminal Code
Byline: JAN RAVENSBERGEN
Credit: GAZETTE
12/21/90
Montreal Gazette (GAZ)
Edition: FINAL
Section: BUSINESS
Page: C1
(Copyright The Gazette)
--- 1st computer pirate convicted in Quebec under Criminal
Code ---
The first criminal conviction for software piracy in the province
was registered in Quebec Court this week - more than five years
after the offence was added to the federal Criminal Code.
Marc Alarie was convicted Wednesday.
His fate sends a strong signal to the many users of illegally
copied software - across the province and in the rest of Canada -
that they are guilty of a criminal act, Michel King, president of
St. Laurent software producer SBI Technologies Inc., said
yesterday. Alarie is a former employee of SBI.
A software pirate is someone who copies, uses and/or sells computer
software illegally. Industry leaders recently estimated that such
piracy costs the Canadian software business some $200 million a
year in foregone revenue.
"We often have the impression that this type of crime is more
common in Quebec," said King. Several hundred mostly small Quebec-
based software producers currently generate annual revenue of
about $100 million, estimated Jacques Saint-Pierre. He's a
consultant to the Conseil de l'Industrie Electronique du Quebec,
whose representatives attended a news conference called by SBI to
publicize the conviction.
Fined $5,000, criminal record
"It is the first time that someone in Quebec is convicted under
section 342.1 (which covers software piracy) of the Criminal
Code," Crown prosecutor Christian Cyr said when contacted late
yesterday. Cyr said he believes it is also the first such
conviction anywhere in Canada - but added that he wasn't entirely
certain. Federal Department of Justice officials could not be
reached for confirmation.
Alarie was fined $5,000 by Quebec Court judge Andre Chaloux and now
carries a criminal record. He could have received a maximum
sentence of 10 years in prison, and an unlimited fine.
Alarie and Normand Pigeon, another former SBI employee, currently
face civil lawsuits filed on SBI's behalf claiming a total of
$180,000.
During a preliminary hearing Dec. 10 and 11, Cyr said, the Crown
presented evidence gathered in three raids by the police fraud
squad. Alarie subsequently switched his plea on the piracy charge
to guilty.
Annual sales of $2.5 million
Alarie operated through a company called Services Cite Informatique
Enr. King estimated that the activities of that firm cost SBI
$200,000 in revenue.
SBI employs about 25 people, has annual sales of more than $2.5
million and is embarking on a sales campaign in the United States,
through as many as 800 software resellers. Its sophisticated
software is used by manufacturers and distributors, mostly
businesses with between 50 and 150 employees, and was conceived
and developed entirely in Quebec. Over the past eight years, King
said, the research-and-development effort has cost SBI about $1.4
million.
Richard Pelletier, a director of the industry council, said his
organization is continuing to encourage businesses, school boards
and individuals to cease using pirated software. So far, about 160
Quebec businesses have formally adopted the council's guidelines
on software use.
In brief
Credit: PUBLISHERS WEEKLY
Column: In brief
12/16/90
HOUSTON CHRONICLE (HOU)
Edition: 2 STAR
Section: ZEST
Page: 31
Category: Book Review
(Copyright 1990)
MONSIEUR PAMPLEMOUSSE INVESTIGATES.
By Michael Bond.
Fawcett Columbine, $16.95.
RTURNING from ``Monsieur Pamplemousse Aloft,'' the eccentric
flatfoot/gourmand and Pommes Frites, his clever dog, team up to sniff
out clues when a not-so-merry prankster sabotages Le Guide,
``France's oldest and most respected food guide.''
The fictional food bible's staff finds itself in a stew when a
false obituary of the director appears in the local paper on the very
day the final manuscript - the first edition produced by computer,
with influential new restaurant ratings - is to be unveiled at a
company celebration.
There the director faints dead away when he finds the manuscript
completely botched, riddled with missratings and erroneous reviews.
Jovial food maven Aristide Pamplemousse, an Inspector
Clousseau-meets-Hercule Poirot type, smells something foul when the
company's accountant - the sole employee other than the director with
access to the computer password - cannot be found.
British writer Bond, also the creator of the Paddington Bear
children's series, smartly sidesteps cliches about computer crime,
instead devising an old-fashioned puzzle with immensely pleasurable
characters and pervasive comic zest.
Computer Miscreants Could be Facing a Major Crackdown
Byline: CAIRN MACGREGOR
Credit: FREELANCE
Column: PERSONAL COMPUTING
09/22/90
Montreal Gazette (GAZ)
Edition: FINAL
Section: COMICS & HOBBIES
Page: M2
Category: COLUMN
(Copyright The Gazette)
--- Computer miscreants could be facing a major crackdown ---
Virus-builders are the scum of the earth. They are also poor,
sick puppies, who need to locked away for their own good as well
as ours. On the other hand, a cracker who goes sniffing around
within some government computer is often only an adolescent
prankster, play-acting like some sort of modern James Bond. Even
if he joyrides along some long-distance telephone lines to get
into a remote computer, he is not a major criminal, despite all
the indignant protestations of Bell.
There is a major difficulty in prosecuting technological crime - it
is technological, hard for the lay person to understand. The
police and the courts sway and bend in the winds of public and
political pressure, with their justice sometimes harsh, sometimes
mild, but usually inappropriate.
I remember some years ago when Montreal had its first, big
"computer crime." The RCMP conducted raids, arrested people,
confiscated computers, boasted of using technological means to
catch technological criminals, and hinted they had secret,
science- fiction, digital equipment for catching these high-tech
criminals who threatened the security of the nation. The media
were abuzz about a secret computerized organization known as the
"Top 40" crackers of Montreal. At that time, you could count
Montreal's microcomputer assembly-language programmers on the
fingers of both hands, but those programmers were scratching their
heads and agreeing that this Top 40 must be a pretty secret
organization because no one had ever heard of it, or anyone who
belonged to it.
Our high-tech threats to society turned out to be a group of four
or five kids, led by "the Prisoner" (Richard Brandow), who were
using their Apple II computers as "blue boxes" - telephone tone
generators that would allow them to make uncharged long-distance
telephone calls. Plans for doing this were available on many
electronic bulletin-board services (BBSs). These kids ran their
own BBSs, and used their blue-box Apples to call, free of charge,
BBSs in the U.S., and swap boastful stories of their antics with
other young would-be crackers.
What high-tech device was used to track down these digital terrors?
An inside informant. One kid had a spat with another and barred
him from his BBS. The banned kid went to the RCMP and turned in
the others. And the Top 40? - a pimple-faced miscreant telephoned
reporters and told them a made-up story, because he "wanted to
tell them something they wanted to hear".
A few years after this vigorous RCMP investigation and prosecution,
a virus with Richard Brandow's name on it infected thousands,
possibly millions, of Mac computers, yet the RCMP did nothing.
U.S. courts and law-enforcement organizations swing between almost
ignoring computer crime and vicious witchhunts. Right now, they
are in a witchhunt. Secret-service officers have been crashing
through doors all over the U.S. In New York City a woman was
startled by about 20 heavily armed state troopers and
secret-service men pounding on her door. One carried a sledge
hammer. She let them in, and they found her 14-year-old, terrified
son wrapped in a towel, standing in the bathtub.
"Zod" (the handle the boy uses on BBSs) said that despite his
repeated requests for an attorney, the agents interrogated him for
the next six hours, threatening to confiscate his father's
computer if he did not co-operate and tell them about computer
hacking.
They arrested Zod on felony charges of computer trespassing and
tampering, accusing him of setting up BBSs on a toll-free
Washington state computer and a Pentagon computer that contained
"sensitive but unclassified" material. I'm not sure how it is
possible to set up a BBS on someone else's computer - I would love
to hear the arguments in this trial.
U.S. Secret Service agents are conducting Operation Sun Devil, a
crackdown on computer crime, and have, so far, confiscated
computer equipment in more than 40 cases. They raided Steve
Jackson Games, refusing to say what they were looking for, but
confiscating three computer systems, two laser printers, and
miscellaneous other equipment. They also raided the home of an
employee, Loyd Blankenship, and confiscated his personal computer
equipment. For months, the company could not ship new products,
and had to lay off eight of its 17 employees. Most of the company
equipment has been returned, some of it damaged beyond repair.
Blankenship has not been charged, but his equipment has not been
returned. He had been using his computer as a word-processor,
writing a role-playing game called "Gurps Cyberpunk". Characters
in the game can break into a fictitious computer system.
Operation Sun Devil has alarmed a number of people in the U.S.
computer industry, including Apple inventor Steve Wozniak, and
they are forming legal foundations to protect the rights of
computer users. In matters of computer crime, Canada tends to
mimic the U.S., after the mandatory Canadian-identity time lag of
about a year. So - ya all take care, ya hear?
Personal Computing appears Wednesdays in the Business section and
Saturdays in Comics and Hobbies. Columns are also available online
in the Leisure section of Gazetel, The Gazette's electronic
financial-information and news source. Please address letters to
Cairn MacGregor, The Gazette, 250 St. Antoine W., Montreal H2Y
3R7. Online messages from Gazetel members will be forwarded, as
will fax messages. To send fax messages, dial (514) 987-2399.
==============================================================================
/ /
/ File 07 / NIA069 /
/ Comments From The Editors /
/ JD & GOT /
/ /
The previous NIA Mailing (NIA068), was mailed out on 17DEC90 we recieved
several returns. Please, when subscribing to NIA, include the _correct address_
so that we deliver the latest issue without delay. Also make sure that
your system can handle files in excessive size. If you mailer can NOT handle
it, please tell us and we will make special arrangements for your system.
We would like to thank So76 & Lord Kalkin for ya'lls help in this mailing. Also
thanks go out to Montresor for his help and contributions in this issue.
Back issues can be found off of Face 2 Face (Refer:713.242.NUKE), and off of
Unholy Temple (Refer:408.PRI.VATE). They can also be found off of the CuD
Archives (Refer:CuD 2.15).
Submissions, questions, comments, and requests to be added to the mailing list
should be mailed to elisem@nuchat.sccsi.com
Out Of Step magazine. For those of you that love your country but fear
your government. If you wish to get the latest issue of Out Of Step, or
want to submit an aritcle of your own, then contact them at:
malrj or mawilli @indsvax1 Bitnet
Based on popular demand, we have decided to adhere to this format. Well, all
I can say is, if you don't like us, I bet your *sister* will.
JD & GOT
NIA Ingnorance, There's No Excuse.
=============================================================================
Downloaded From P-80 International Information Systems 304-744-2253 12yrs+